General discussion

  • Creator
  • #2297639

    Policy Question


    by d.jones092 ·


    Does anyone know where I can get an explanation (preferably not Windows Help) of the complexity requirements that are enabled via the Password policies in 2000 server?

    Thanks for any info.

    Dennis Jones

All Comments

  • Author
    • #2671138

      Reply To: Policy Question

      by itmantpc ·

      In reply to Policy Question

      Complexity Requirements? are you referring to that a policy force a password to be alpha-numeric and/or a certian length? When they expire and rotation (not using same passwords, forcing different passwords when expire)? I am confused with your question. Google can give you tons of information on how to setup password policies, which in this information you may find understanding on the subject.

    • #2671117

      Reply To: Policy Question

      by cptomlly ·

      In reply to Policy Question

      Here is Microsoft KB article that details password complexity requirements for Win2K:;en-us;279890#appliesto

      From the article:
      Passwords must be at least six characters long.
      Passwords may not contain your user name or any part of your full name.
      Passwords must contain characters from at least three of the following four classes: Uppercase letters, lowercase letters, numeric characters, and/or punctuation characters.

      These are hardcoded in to passfilt.dll and cannot be edited through U/I or registry. You would have to write a new DLL.

      Hope this helps.

    • #2671071

      Reply To: Policy Question

      by joseph moore ·

      In reply to Policy Question

      Also try this Technet article on PASSFILT.DLL, the password complexity filter:

      It was an optional install on NT4; in Win2K and beyond it is now on by default, and the filter rules are the same.

    • #2671302

      Reply To: Policy Question

      by d.jones092 ·

      In reply to Policy Question

      This question was closed by the author

Viewing 3 reply threads