Active Directory / Group Policy / Security Settings

Here’s one I just ran across.

If you have a GPO that enforces the password Age so it cannot be changed very often (IE:  Password must be at least 48 hours before you’re allowed to change it as an example) and don’t realize it there you can be banging you head against the wall

*HUH?!*

Yeah this threw me for a loop.  I was banging my head against the wall on this until I realized everything was working fine unless we tried to change our passwords more than once every two days (not a typical thing)

But the stupid thing was that error.

“Unable to update the password.  The value provided for the new password does not meet the length, complexity or history requirements of the domain.”

Each and every time I kept glancing and saying “It’s a new password, it’s stupid complexity, it’s 500 letters long…”

Never dawned on me about a Password MINIMUM age.

So if you find you get that error, don’t forget to check for password MINIMUM age as well.

“Grumble grumble grumble….”

Sean
The Energized Tech


[array]$Archive

Energized About Windows PowerShell, , Ottawa, Ontario USA

© 2014 Energized About Windows PowerShell-- All rights reserved.

Email Us
  • Facebook Logo
  • Twitter Logo
  • RSS logo
  • YouTube logo