Windows 2008 r2 user password complexity

Consider implementing a requirement in your organization to use ALT characters in the range from through as part of all administrator passwords. ALT characters outside of this range can represent standard alphanumeric characters that do not add additional complexity to the password. Passwords that contain only alphanumeric characters are easy to compromise by using publicly available tools. To prevent this, passwords should contain additional characters and meet complexity requirements.

The following table lists the actual and effective default policy values for the most recent supported versions of Windows.

There are no differences in the way this policy setting works between supported versions of Windows. This section describes how an attacker might exploit a feature or its configuration, how to implement the countermeasure, and the possible negative consequences of countermeasure implementation. Passwords that contain only alphanumeric characters are extremely easy to discover with several publicly available tools. Configure the Passwords must meet complexity requirements policy setting to Enabled and advise users to use a variety of characters in their passwords.

When combined with a Minimum password length of 8, this policy setting ensures that the number of different possibilities for a single password is so great that it is difficult but not impossible for a brute force attack to succeed.

If the Minimum password length policy setting is increased, the average amount of time necessary for a successful attack also increases. If the default password complexity configuration is retained, additional Help Desk calls for locked-out accounts could occur because users might not be accustomed to passwords that contain non-alphabetical characters, or they might have problems entering passwords that contain accented characters or symbols on keyboards with different layouts.

However, all users should be able to comply with the complexity requirement with minimal difficulty. You should write it download in case you lost it. If your forgot Windows Server password , just take it easy, download Windows Password Key Enterprise to reset Windows password to blank without knowing the current one by making a bootable disc. Windows Password Key 4WinKey. Menu Overview Guide Store. Windows Server Password Complexity Requirements When we install Windows Server , many people often meet this quite common problem: you weren't able to add a password that it would accept.

Does anyone know where the server is picking these settings up from and how to disable the policy just for this machine not the whole domain Thanks, Mick. Best Answer. IgnaceQ This person is a verified professional. Verify your account to enable IT peers to see that you are a professional. I checked my documentation and i found 2 entry's.

View this "Best Answer" in the replies below ». Popular Topics in Windows Server. Which of the following retains the information it's storing when the system power is turned off?

Submit ». Thanks, Mick. Sign up to join this community. The best answers are voted up and rise to the top. Stack Overflow for Teams — Collaborate and share knowledge with a private group. Create a free Team What is Teams? Learn more. Disable password complexity rule in Active Directory Ask Question.

Asked 12 years, 7 months ago. Active 4 years, 8 months ago. Viewed k times. Where do I go to disable the password complexity policy for the domain?

Improve this question. Daniel Revell. Daniel Revell Daniel Revell 3 3 gold badges 7 7 silver badges 11 11 bronze badges. Add a comment.