ASP.NET ChangePassword error using ActiveDirectoryMembershipProvid
I have got an ASP.NET 2.0 website and I am using ActiveDirectoryMembershipProvider against Active Directory and forms authentication. I want to use the drag and drop controls from VS 2005 for login, passwordRecovery, CreateUserWizard, and ChangePassword. I have extended the AD schema to allow for passwordRecovery. All the things are working fine but changePassword doesnt work. I am able to go into the AD and change the password for a user, but when I try through my web app, using a password of the proper length and complexity, then I am getting an error returned saying "The password does not meet the password policy requirements. Check the minimum password length, password complexity and password history requirements. (Exception from HRESULT: 0x800708C5)". Can anyone tell me how to solve this. Below is the web.config
<connectionStrings>
<add name="ADConnectionString"
connectionString="LDAP://11.134.6.2/OU=Customers,DC=pfweb,DC=net"/>
</connectionStrings>
<authentication mode="Forms">
<forms name=".ADAuthCookie" loginUrl="login.aspx"
defaultUrl="default.aspx" protection="All" timeout="30" path="/"
requireSSL="false" slidingExpiration="true" cookieless="UseDeviceProfile"
domain="" enableCrossAppRedirects="false">
<credentials passwordFormat="SHA1"/>
</forms>
</authentication>
<authorization>
<deny users="?"/>
<allow users="*"/>
</authorization>
<membership defaultProvider="ADMembershipProvider">
<providers>
<add name="ADMembershipProvider"
type="System.Web.Security.ActiveDirectoryMembershipProvider,
System.Web, Version=2.0.0.0,
Culture=neutral,
PublicKeyToken=b03f5f7f11d50a3a"
connectionStringName="ADConnectionString"
connectionUsername="myweb\auth_srv"
connectionPassword="ppassword"
attributeMapUsername="sAMAccountName"
enablePasswordReset="true"
requiresQuestionAndAnswer="true"
attributeMapPasswordQuestion="PennFoster-User-forgotpwdquestion"
attributeMapPasswordAnswer="PennFoster-User-forgotpwdanswer"
attributeMapFailedPasswordAnswerCount="PennFoster-User-failedanswercount"
attributeMapFailedPasswordAnswerTime="PennFoster-User-lastfailedanswertime"
attributeMapFailedPasswordAnswerLockoutTime="PennFoster-User-accountlockedtime"
requiresUniqueEmail="true"
enableSearchMethods="false"
minRequiredPasswordLength="7"
minRequiredNonalphanumericCharacters="1"
applicationName="biadmin"
/>
</providers>
</membership>
Re: ASP.NET ChangePassword error using ActiveDirectoryMembershipProvid
There are many times that people get this error due to the domain has a minimum password length like 1 day or something and you have tried to change the password more than once within that time period. It might be a normal issue since all other things with the password might be looking alright. It can be also possible that the user that you are testing might be having "User cannot change password" checked in the AD. So turn it off back and see if that works.