Complex password with special character

  • Thread starter Thread starter Jon
  • Start date Start date
J

Jon

Hi!

Is is possible to enforce the password complexity with special character?
Active Directory should not accept any passsword without a single special
charater.

Regards.
 
There is one built-in complexity rule, and the ability for the owner
of the infrastructure to replace that rule by having their developers
write replacement code. Exactly what must be done depends on the
version of the infrastructure, or rather soon will when W2k8 releases.

Roger
 
Hello Jon,

Passwords must meet complexity requirements determines whether password complexity
is enforced. If this setting is enabled, user passwords meet the following
requirements:

. The password is at least six characters long.

. The password contains characters from at least three of the following five
categories:

. English uppercase characters (A - Z)

. English lowercase characters (a - z)

. Base 10 digits (0 - 9)

. Non-alphanumeric (for example: !, $, #, or %)

. Unicode characters


. The password does not contain three or more characters from the user's
account name.

. If the account name is less than three characters long, this check is not
performed because the rate at which passwords would be rejected is too high.
When checking against the user's full name, several characters are treated
as delimiters that separate the name into individual tokens: commas, periods,
dashes/hyphens, underscores, spaces, pound-signs, and tabs. For each token
that is three or more characters long, that token is searched for in the
password; if it is present, the password change is rejected. For example,
the name "Erin M. Hagens" would be split into three tokens: "Erin", "M",
and "Hagens". Because the second token is only one character long, it would
be ignored. Therefore, this user could not have a password that included
either "erin" or "hagens" as a substring anywhere in the password. All of
these checks are case-insensitive.

. These complexity requirements are enforced upon password change or creation
of new passwords. It is recommended that you enable this setting.



Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
 
Thank you for your response.

Our Risk Management Group wants to force everyone to use special character
on their password. I need to ensure that everyone is complying with the
policy but I think even password complexity applied on the domain policy they
can still use password without using special character. How can I prevent
this?
 
Hello Jon,

You can not force to use special characters, the complexity gives you the
options like described in my first answer.

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
 
Dear Meinolf,

Thanks for the feedback. Do you have any idea if there are 3rd party
software to make this possible?

Regards,
Jon
 
Hello Jon,

No never heard about. Better try to advise your boss to choose long password
over 16 characters and the settings you have.

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
 
Back
Top