Forum Discussion
Password Complexity Error 2016281112(Remediation failed)
I was struggling with this too until my colleague very carefully read the tooltip on that setting, paying attention to the commas. What this setting affects is the PIN. If you put "alphanumeric" for PW type, the compliance policy will require a password, AND an alphanumeric PIN. Each setting requires a password actually, so the only difference is what style of PIN is required.
If you want a numeric only PIN, or if you do device default (which gives the option of an alphanumeric PIN but doesn't require it) - either way the Password Complexity switch disappears. The PW complexity setting is only relevant when the password type is set to alphanumeric, which forces the PIN to be alphanumeric.
My guess is that if you queried a few noncompliant users, you'd find that they are using numeric PINs, therefore they are noncompliant, regardless of what's going on with the PW.
Also confirmed here: https://learn.microsoft.com/en-us/mem/intune/protect/compliance-policy-create-windows
In our case, 6-digit PINs are working fine. There is only one user with local administrator rights on the computer, but the user is signing in using their work email with the 6-digit PIN. The work email is also part of the Local Administrators group, as the user is a developer and requires administrator rights to run several applications like NVM. We are encountering this error only on this specific device.
This link may help to resolve the issue:
https://learn.microsoft.com/en-us/troubleshoot/mem/intune/device-protection/error-deploying-password-policy
- On the Windows MDM desktop platform, the user must press CTRL+ALT+DEL and select Change Password, and then the new password rules will be enforced.