Tuesday, July 31, 2012

EDIT OR ENABLE THE PASSWORD POLICY ON WINDOWS SERVER


EDIT OR ENABLE THE PASSWORD POLICY ON WINDOWS SERVER 2008 R2 WITH ACTIVE DIRECTORY

                                   If you are setting this up at home or in a small business environment and don't want to deal with the complex passwords that are required to meet the policy guidelines, you can edit the policy to disable the complexity requirements. 

                                    You can try going to a command prompt and typing 'gpedit.msc' then navigating to Computer Settings\Windows Settings\Security Settings\Account Policies\Password Policy\ section.

                                     Here you will see the 'Password must meet complexity requirements' item.  When viewing the properties of it, usually the Enabled/Disabled radio buttons will be grayed out and you cannot change the values. 

                                     If they are able to be changed, go ahead and do it, and save out of the dialog boxes.  If it is grayed out and you cannot change it here, this is how you do it:

GO TO A COMMAND PROMPT:      
         
1.Type 'secedit /export /cfg c:\local.cfg' and hit enter
2.Using notepad, edit c:\local.cfg
3.Look for the line "PasswordComplexity = 1" and change it to "PasswordComplexity = 0"
4.You can also edit "MinimumPasswordLength = 7" to a lesser value if you like.
5.Save the file.

AT A COMMAND PROMPT:

 Type 'secedit /configure /db %windir%\security\local.sdb /cfg c:\local.cfg /areas SECURITYPOLICY
This will apply the new settings and refreshing the gpedit.msc should reflect the new settings

Set your new less complex password….

Link To Video:


1 comment:

  1. Thank you so much! This is the only thing that worked!!

    ReplyDelete

Comments