I run active directory and when add a New user with name "Reza" report this :
Windows cannot creat object Reza because :
Unable to update password. The value provided for a new password does not meet the lenghtT complexity or history requarement of the domain
who can help me to fix this?
2006-07-09 02:33:03 · 5 answers · asked by hajjizadeh2002 1 in Computers & Internet ➔ Computer Networking
aghaye hajizadeye gol
in masale bekhatere group policy hast ke baraye password set shode
ehtemalan taghirati dar defaulte policye password ijad kardid ke on baese in masale shode
va ejaze nemide ke useretoon bedoone password bemoone
ya passwordesh beandazeye kafi complex nist
rooye user right click konid va rest password ro bezanin va yek passworde pichide barash bezarid
masalan yechizi shabihe in:
P@ssw0rdREZA
moshkeleton ehtemalan bedone dastkarie policy hal mishe
have fun
2006-07-09 02:44:15 · answer #1 · answered by 942 5 · 0⤊ 1⤋
The default password filter (Passfilt.dll) included with Windows Server 2003 requires that a password:
*Is not based on the user’s account name.
*Contains at least six characters.
*Contains characters from three of the following four categories:
o Uppercase alphabet characters (A–Z)
o Lowercase alphabet characters (a–z)
o Arabic numerals (0–9)
o Nonalphanumeric characters (for example, !$#,%)
In order to disable this requirement you need to edit the Default Domain Policy for your domain.
1. Go to Administrative tools folder.
2. Double-click on the Default Domain Security Policy icon.
Note: If for any reason you don't see that icon you can still edit the Default Domain Group Policy from the AD Users and Computers snap-in, or from a GPMC window (if you have GPMC installed - Download GPMC).
3. Navigate to Security Settings > Account Policies > Password Policy.
4. Right-click on the Minimum Password Length option in the right pane and select Properties.
5. Keep the V on the Define Setting selected! Do not remove the V from that check-box. Removing the V will cause the GPO to revert to the default setting, which is what we are trying to remove in the first place.
6. Enter 0 (zero) for the number of minimum characters required in a password.
7. Now double-click on the Passwords Must Meet Complexity Requirements option in the right pane.
8. Again, do not remove the V from that check-box. Instead, select Disabled.
9. Click OK all the way out and close the GPO window.
In order to refresh the policy type the following command in a CMD window and click ENTER:
gpupdate /force
Done.
2006-07-09 09:46:07 · answer #2 · answered by Mikal 4 · 0⤊ 0⤋
Your security policy is set for a minimum password length and password complexity is enabled.
Set a password that meets the length requirements. Password complexity requires that all passwords meet the following criteria:
1. At least one upper case letter
2. At least one lower case letter
3. At least one digit and/or one other non-alphanumeric character such as a punctuation mark.
Do NOT modify the Default Domain Policy as another user has directed!! This is a major security risk! If you work for a publicly held company in the US, your Sarbox auditors will eat you for lunch! Setting zero length passwords is just about as STUPID as adding all users to the Domain Admins Group.
If that bozo worked for me, I'd fire his a$$ in a heartbeat!
2006-07-09 10:52:38 · answer #3 · answered by Bostonian In MO 7 · 0⤊ 0⤋
Check you password policy, either there are too many or too few characters in the password. Might also contain a character that can't be used. Try using a unique password.
2006-07-09 09:37:05 · answer #4 · answered by pc_gator 3 · 0⤊ 0⤋
You have to obtain a hotfix from Microsoft for the Active Directory Management Agent (ADMA). Here's the link to the Microsoft support knowledge base article:
http://support.microsoft.com/kb/300137/EN-US
2006-07-09 09:39:36 · answer #5 · answered by nquizzitiv 5 · 0⤊ 0⤋