Forum Discussion
Windows Server 2012R2 password policy
In your position, I would run a Group Policy Results against the user and the computer - this should give you information on which GPO's are being applied for the password settings, then drill down at the GPO and see the individual settings.
Example from my test domain:
Hope this helps. Let us know how you get on.
Mark
Thanks very much HidMov
I did that but it seems to have opened up an even bigger can of worms:( Someone else setup this network and has since left. I can't see anything in the GPO results that is forcing it to 14 characters. Although the default domain policy does not have this set, is it possible that it is making the default 14 rather than 7? I wonder if I should try setting this and see what happens? I don't want to break anything though!
Thanks Theresa Stock - very odd. I've not seen any case where the password policy would show as 7 days but revert over to 14, unless there is some kind of 3rd party management app?
In AD Poweshell, could you run the following and let me know the result?
Set-ADDefaultDomainPasswordPolicy -MinPasswordLength 16 -Identity contoso.com
When you run the GPO Result, does it specify the set password length and the winning GPO as per my previous screenshot.
Thanks,
Mark