Password complexity via policy

I am trying to set up new accounts in an new AD and am running into an issue
where it is stating that the password cannot be set due to not meeting the
complexity requirements. I have gone into the default domain policy and
disabled all of the complexity settings and age, etc and it is still not
allowing for setting a password without the complexity requirements.

This is Windows Server 2003 with SP2 applied. Is there some funky security
enabled with SP2 that wasn't part of the initial server install or is there
another location the password complexity is enforced?

Thanks.

Rockn <Rockn@newsgroups.nospam> wrote:
> I am trying to set up new accounts in an new AD and am running into
> an issue where it is stating that the password cannot be set due to
> not meeting the complexity requirements. I have gone into the default
> domain policy and disabled all of the complexity settings and age,
> etc and it is still not allowing for setting a password without the
> complexity requirements.
> This is Windows Server 2003 with SP2 applied. Is there some funky
> security enabled with SP2 that wasn't part of the initial server
> install or is there another location the password complexity is
> enforced?
> Thanks.

How long did you wait, and have you rebooted?
Are you sure it was the default domain policy in which the policy was set?
Run an rsop.msc to check.

Sorry, I should have also mentioned that I did an gpupdate /force and did a
reboot as well.

"Lanwench [MVP - Exchange]"
<lanwench@heybuddy.donotsendme.unsolicitedmailatyahoo.com> wrote in message
news:eSQlUStBJHA.1180@TK2MSFTNGP04.phx.gbl...
> Rockn <Rockn@newsgroups.nospam> wrote:
>> I am trying to set up new accounts in an new AD and am running into
>> an issue where it is stating that the password cannot be set due to
>> not meeting the complexity requirements. I have gone into the default
>> domain policy and disabled all of the complexity settings and age,
>> etc and it is still not allowing for setting a password without the
>> complexity requirements.
>> This is Windows Server 2003 with SP2 applied. Is there some funky
>> security enabled with SP2 that wasn't part of the initial server
>> install or is there another location the password complexity is
>> enforced?
>> Thanks.
>
> How long did you wait, and have you rebooted?
> Are you sure it was the default domain policy in which the policy was set?
> Run an rsop.msc to check.
>

Nevermind, guess I didn't wait long enough before posting. It lets me set
any password now.

Thanks

"Lanwench [MVP - Exchange]"
<lanwench@heybuddy.donotsendme.unsolicitedmailatyahoo.com> wrote in message
news:eSQlUStBJHA.1180@TK2MSFTNGP04.phx.gbl...
> Rockn <Rockn@newsgroups.nospam> wrote:
>> I am trying to set up new accounts in an new AD and am running into
>> an issue where it is stating that the password cannot be set due to
>> not meeting the complexity requirements. I have gone into the default
>> domain policy and disabled all of the complexity settings and age,
>> etc and it is still not allowing for setting a password without the
>> complexity requirements.
>> This is Windows Server 2003 with SP2 applied. Is there some funky
>> security enabled with SP2 that wasn't part of the initial server
>> install or is there another location the password complexity is
>> enforced?
>> Thanks.
>
> How long did you wait, and have you rebooted?
> Are you sure it was the default domain policy in which the policy was set?
> Run an rsop.msc to check.
>

Yeah you got burned by the gpo replication. I'm guessing you have multiple
sites.

--
Paul Bergson
MVP - Directory Services
MCTS, MCT, MCSE, MCSA, Security+, BS CSci
2008, 2003, 2000 (Early Achiever), NT4

http://www.pbbergs.com

Please no e-mails, any questions should be posted in the NewsGroup
This posting is provided "AS IS" with no warranties, and confers no rights.

"Rockn" <Rockn@newsgroups.nospam> wrote in message
news:%230y2j1tBJHA.2476@TK2MSFTNGP06.phx.gbl...
> Nevermind, guess I didn't wait long enough before posting. It lets me set
> any password now.
>
> Thanks
>
> "Lanwench [MVP - Exchange]"
> <lanwench@heybuddy.donotsendme.unsolicitedmailatyahoo.com> wrote in
> message news:eSQlUStBJHA.1180@TK2MSFTNGP04.phx.gbl...
>> Rockn <Rockn@newsgroups.nospam> wrote:
>>> I am trying to set up new accounts in an new AD and am running into
>>> an issue where it is stating that the password cannot be set due to
>>> not meeting the complexity requirements. I have gone into the default
>>> domain policy and disabled all of the complexity settings and age,
>>> etc and it is still not allowing for setting a password without the
>>> complexity requirements.
>>> This is Windows Server 2003 with SP2 applied. Is there some funky
>>> security enabled with SP2 that wasn't part of the initial server
>>> install or is there another location the password complexity is
>>> enforced?
>>> Thanks.
>>
>> How long did you wait, and have you rebooted?
>> Are you sure it was the default domain policy in which the policy was
>> set? Run an rsop.msc to check.
>>
>
>

Only one site, just impatient. Funny that changes don't propogate on the
same server immidiately.


"Paul Bergson [MVP-DS]" <pbergson@allete_nospam.com> wrote in message
news:OD0PkIvBJHA.1632@TK2MSFTNGP06.phx.gbl...
> Yeah you got burned by the gpo replication. I'm guessing you have
> multiple sites.
>
> --
> Paul Bergson
> MVP - Directory Services
> MCTS, MCT, MCSE, MCSA, Security+, BS CSci
> 2008, 2003, 2000 (Early Achiever), NT4
>
> http://www.pbbergs.com
>
> Please no e-mails, any questions should be posted in the NewsGroup
> This posting is provided "AS IS" with no warranties, and confers no
> rights.
>
> "Rockn" <Rockn@newsgroups.nospam> wrote in message
> news:%230y2j1tBJHA.2476@TK2MSFTNGP06.phx.gbl...
>> Nevermind, guess I didn't wait long enough before posting. It lets me set
>> any password now.
>>
>> Thanks
>>
>> "Lanwench [MVP - Exchange]"
>> <lanwench@heybuddy.donotsendme.unsolicitedmailatyahoo.com> wrote in
>> message news:eSQlUStBJHA.1180@TK2MSFTNGP04.phx.gbl...
>>> Rockn <Rockn@newsgroups.nospam> wrote:
>>>> I am trying to set up new accounts in an new AD and am running into
>>>> an issue where it is stating that the password cannot be set due to
>>>> not meeting the complexity requirements. I have gone into the default
>>>> domain policy and disabled all of the complexity settings and age,
>>>> etc and it is still not allowing for setting a password without the
>>>> complexity requirements.
>>>> This is Windows Server 2003 with SP2 applied. Is there some funky
>>>> security enabled with SP2 that wasn't part of the initial server
>>>> install or is there another location the password complexity is
>>>> enforced?
>>>> Thanks.
>>>
>>> How long did you wait, and have you rebooted?
>>> Are you sure it was the default domain policy in which the policy was
>>> set? Run an rsop.msc to check.
>>>
>>
>>
>
>

Certain objects are sent for replication immediately others are less
frequent as you have found.

--
Paul Bergson
MVP - Directory Services
MCTS, MCT, MCSE, MCSA, Security+, BS CSci
2008, 2003, 2000 (Early Achiever), NT4

http://www.pbbergs.com

Please no e-mails, any questions should be posted in the NewsGroup
This posting is provided "AS IS" with no warranties, and confers no rights.

"Rockn" <Rockn@newsgroups.nospam> wrote in message
news:OZXLbEFCJHA.524@TK2MSFTNGP06.phx.gbl...
> Only one site, just impatient. Funny that changes don't propogate on the
> same server immidiately.
>
>
> "Paul Bergson [MVP-DS]" <pbergson@allete_nospam.com> wrote in message
> news:OD0PkIvBJHA.1632@TK2MSFTNGP06.phx.gbl...
>> Yeah you got burned by the gpo replication. I'm guessing you have
>> multiple sites.
>>
>> --
>> Paul Bergson
>> MVP - Directory Services
>> MCTS, MCT, MCSE, MCSA, Security+, BS CSci
>> 2008, 2003, 2000 (Early Achiever), NT4
>>
>> http://www.pbbergs.com
>>
>> Please no e-mails, any questions should be posted in the NewsGroup
>> This posting is provided "AS IS" with no warranties, and confers no
>> rights.
>>
>> "Rockn" <Rockn@newsgroups.nospam> wrote in message
>> news:%230y2j1tBJHA.2476@TK2MSFTNGP06.phx.gbl...
>>> Nevermind, guess I didn't wait long enough before posting. It lets me
>>> set any password now.
>>>
>>> Thanks
>>>
>>> "Lanwench [MVP - Exchange]"
>>> <lanwench@heybuddy.donotsendme.unsolicitedmailatyahoo.com> wrote in
>>> message news:eSQlUStBJHA.1180@TK2MSFTNGP04.phx.gbl...
>>>> Rockn <Rockn@newsgroups.nospam> wrote:
>>>>> I am trying to set up new accounts in an new AD and am running into
>>>>> an issue where it is stating that the password cannot be set due to
>>>>> not meeting the complexity requirements. I have gone into the default
>>>>> domain policy and disabled all of the complexity settings and age,
>>>>> etc and it is still not allowing for setting a password without the
>>>>> complexity requirements.
>>>>> This is Windows Server 2003 with SP2 applied. Is there some funky
>>>>> security enabled with SP2 that wasn't part of the initial server
>>>>> install or is there another location the password complexity is
>>>>> enforced?
>>>>> Thanks.
>>>>
>>>> How long did you wait, and have you rebooted?
>>>> Are you sure it was the default domain policy in which the policy was
>>>> set? Run an rsop.msc to check.
>>>>
>>>
>>>
>>
>>
>
>