SOLVED

-2016281112 (Remediation failed) - Minimum Password Length

%3CLINGO-SUB%20id%3D%22lingo-sub-2315223%22%20slang%3D%22en-US%22%3E-2016281112%20(Remediation%20failed)%20-%20Minimum%20Password%20Length%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2315223%22%20slang%3D%22en-US%22%3E%3CP%3EHi%20all%2C%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20have%20been%20applied%20the%20Intune%20policy%20about%20minimum%20password%20length%2C%20to%20more%20than%20100%20clients%20but%20for%2020%20of%20them.%26nbsp%3B%3CBR%20%2F%3EMy%20password%20policy%20has%20a%20minimum%20of%20twelve%20characters%2C%20one%20Upper%20case%2C%20one%20Lower%20case%2C%20one%20number%20%26amp%3B%20one%20special%20character.%20The%20user%20password%20meets%20the%20policy%20but%2C%20I'm%20still%20getting%20the%20device%20as%20non-compliant.%3C%2FP%3E%3CP%3EI'm%20getting%20the%20error%20message%20below%20%3A%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22Capture.PNG%22%20style%3D%22width%3A%20277px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F277377iC7F213445FA9914D%2Fimage-size%2Flarge%3Fv%3Dv2%26amp%3Bpx%3D999%22%20role%3D%22button%22%20title%3D%22Capture.PNG%22%20alt%3D%22Capture.PNG%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThanks%20in%20advance%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-2315223%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EIntune%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EMobile%20Device%20Management%20(MDM)%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2315483%22%20slang%3D%22en-US%22%3ERe%3A%20-2016281112%20(Remediation%20failed)%20-%20Minimum%20Password%20Length%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2315483%22%20slang%3D%22en-US%22%3E%3CP%3EHi%2C%3CBR%20%2F%3EThank%20you%20for%20your%20response.%3CBR%20%2F%3EI%20tested%20it%20last%20week%2C%20but%20it%20didn't%20work%20for%20my%20case.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2316129%22%20slang%3D%22en-US%22%3ERe%3A%20-2016281112%20(Remediation%20failed)%20-%20Minimum%20Password%20Length%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2316129%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F27722%22%20target%3D%22_blank%22%3E%40George%20Grammatikos%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHI%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20suspect%20it%20has%20to%20do%20with%20the%20set%20and%20get%20commands%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%3EThe%20problem%20is%20that%20this%20CSP%20only%20supports%20Add%20Operation%2C%20which%20means%20the%20Get%20Operation%20will%20always%20fail%20because%20it%20has%20not%20been%20implemented.%20%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%3EWe%20are%20getting%20the%20same%20error%20when%20we%20are%20pushing%20a%20device%20configuration%20policy%20to%20set%20the%20Password...%20Of%20course%2C%20this%20succeeds%2C%20but%20getting%20the%20result....%20most%20of%20the%20times%20it%20fails%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22Rudy_Ooms_0-1620020144931.png%22%20style%3D%22width%3A%20558px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F277431iEFFBCF960D362346%2Fimage-dimensions%2F558x138%3Fv%3Dv2%22%20width%3D%22558%22%20height%3D%22138%22%20role%3D%22button%22%20title%3D%22Rudy_Ooms_0-1620020144931.png%22%20alt%3D%22Rudy_Ooms_0-1620020144931.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EBut%20you%20are%20mentioning%20non-compliant%20errors%3F%20Could%20you%20show%20your%20device%20securitycompliance%20requirements%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2316416%22%20slang%3D%22en-US%22%3ERe%3A%20-2016281112%20(Remediation%20failed)%20-%20Minimum%20Password%20Length%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2316416%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F620702%22%20target%3D%22_blank%22%3E%40Rudy_Ooms%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHi%2C%3CBR%20%2F%3EPlease%2C%20check%20the%20system%20security%20section%20in%20the%20device%20compliance%20policy%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22Capture1.PNG%22%20style%3D%22width%3A%20305px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F277444iBE02954BE63D8176%2Fimage-size%2Flarge%3Fv%3Dv2%26amp%3Bpx%3D999%22%20role%3D%22button%22%20title%3D%22Capture1.PNG%22%20alt%3D%22Capture1.PNG%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2316418%22%20slang%3D%22en-US%22%3ERe%3A%20-2016281112%20(Remediation%20failed)%20-%20Minimum%20Password%20Length%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2316418%22%20slang%3D%22en-US%22%3E%3CP%3EHi%2C%3CBR%20%2F%3E%3CBR%20%2F%3EJust%20wondering%20(%20I%20am%20setting%20up%20a%20test%20vm%20right%20now)%20did%20the%20problem%20users%20also%20tried%20to%20change%20their%20password%20themself%20on%20the%20device%20itself%20and%20trying%20to%20check%20the%20compliance%20status%20in%20the%20company%20app%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20am%20missing%20the%20password%20type%20and%20password%20complexity%20in%20your%20screenshot%3F%20Or%20did%20you%20leave%20it%20on%20default%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22Rudy_Ooms_0-1620029400891.png%22%20style%3D%22width%3A%20505px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F277445i02AE2B690D1FBEE5%2Fimage-dimensions%2F505x63%3Fv%3Dv2%22%20width%3D%22505%22%20height%3D%2263%22%20role%3D%22button%22%20title%3D%22Rudy_Ooms_0-1620029400891.png%22%20alt%3D%22Rudy_Ooms_0-1620029400891.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAnd%20are%20the%20devices%3A%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Eazure%20ad%20joined%20or%26nbsp%3Bdomain%2Fhybrid%20joined%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EDid%20you%20also%20disabled%20Windows%20Hello%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAnd%20did%20you%20also%20read%20the%20docs%20from%20microsoft%20about%20this%20topic%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fwindows%2Fclient-management%2Fmdm%2Fpolicy-csp-devicelock%3FWT.mc_id%3DPortal-Microsoft_Intune_DeviceSettings%23devicelock-mindevicepasswordcomplexcharacters%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EPolicy%20CSP%20-%20DeviceLock%20-%20Windows%20Client%20Management%20%7C%20Microsoft%20Docs%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThe%20enforcement%20of%20policies%20for%20Microsoft%20accounts%20happen%20on%20the%20server%2C%20and%20the%20server%20requires%20a%20password%20length%20of%208%20and%20a%20complexity%20of%202.%20A%20complexity%20value%20of%203%20or%204%20is%20unsupported%20and%20setting%20this%20value%20on%20the%20server%20makes%20Microsoft%20accounts%20non-compliant.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2317017%22%20slang%3D%22en-US%22%3ERe%3A%20-2016281112%20(Remediation%20failed)%20-%20Minimum%20Password%20Length%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2317017%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F620702%22%20target%3D%22_blank%22%3E%40Rudy_Ooms%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHi%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EOne%20user%20changed%20his%20password%20but%2C%20he%20is%20having%20the%20same%20issue.%3CBR%20%2F%3EThe%20Password%20type%20setting%20is%20the%20default%20one.%3CBR%20%2F%3EThe%20devices%20are%20joined%20to%20an%20Azure%20AD.%3CBR%20%2F%3EThe%20Windows%20Hello%20for%20some%20of%20the%20devices%20is%20enabled%20and%20for%20some%20others%20disabled.%3CBR%20%2F%3EThe%20password%20has%20a%20minimum%20of%20twelve%20characters%2C%20x1%20Upper%20case%2C%20x1%20Lower%20case%2C%20x1%20number%20%26amp%3B%20x1%20special%20character.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2315388%22%20slang%3D%22en-US%22%3ERe%3A%20-2016281112%20(Remediation%20failed)%20-%20Minimum%20Password%20Length%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2315388%22%20slang%3D%22en-US%22%3EHi%2C%3CBR%20%2F%3E%3CBR%20%2F%3ECOuld%20you%20disable%20the%20%22special%20character%22%20as%20test%3F%20to%20see%20what%20happens%20.%3CBR%20%2F%3E%3CBR%20%2F%3ETake%20a%20look%20at%20this%20uservoice..%3CBR%20%2F%3E%3CBR%20%2F%3E%3CA%20href%3D%22https%3A%2F%2Fmicrosoftintune.uservoice.com%2Fforums%2F291681-ideas%2Fsuggestions%2F38371480-intune-device-profile-password-policy-including-s%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fmicrosoftintune.uservoice.com%2Fforums%2F291681-ideas%2Fsuggestions%2F38371480-intune-device-profile-password-policy-including-s%3C%2FA%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2322125%22%20slang%3D%22en-US%22%3ERe%3A%20-2016281112%20(Remediation%20failed)%20-%20Minimum%20Password%20Length%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2322125%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F27722%22%20target%3D%22_blank%22%3E%40George%20Grammatikos%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHi.%20As%20you%20know%20I%20sent%20you%20a%20private%20message%20with%20some%20tips.%3C%2FP%3E%3CP%3EFor%20anyone%20else%20reading%20this%20question%3A%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHi%2C%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20guess%20when%20I%20need%20to%20troubleshoot%20this.%20I%20would%20change%20one%20setting%20at%20a%20time.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EIf%20you%20take%20a%20look%20at%20the%20Microsoft%20doc%20I%20linked%20to...%26nbsp%3B%26nbsp%3B%3C%2FP%3E%3CP%3E*%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22Rudy_Ooms_0-1620139302030.png%22%20style%3D%22width%3A%20400px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F277882i358F6FDEC0F8E7C0%2Fimage-size%2Fmedium%3Fv%3Dv2%26amp%3Bpx%3D400%22%20role%3D%22button%22%20title%3D%22Rudy_Ooms_0-1620139302030.png%22%20alt%3D%22Rudy_Ooms_0-1620139302030.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22Rudy_Ooms_1-1620139301874.png%22%20style%3D%22width%3A%20400px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F277883iFE7EF605FD0DCD29%2Fimage-size%2Fmedium%3Fv%3Dv2%26amp%3Bpx%3D400%22%20role%3D%22button%22%20title%3D%22Rudy_Ooms_1-1620139301874.png%22%20alt%3D%22Rudy_Ooms_1-1620139301874.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fmicrosoftintune.uservoice.com%2Fforums%2F291681-ideas%2Fsuggestions%2F38371480-intune-device-profile-password-policy-including-s%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fmicrosoftintune.uservoice.com%2Fforums%2F291681-ideas%2Fsuggestions%2F38371480-intune-device-profile...%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20guess%20you%20have%20got%202%20options.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E*Remove%20that%20part%20of%20the%20compliance%20policy%20as%20it%20is%20not%20working%20(uservoice%20says%20the%20same%3F)%3C%2FP%3E%3CP%3E*Change%20the%20password%20compliance%20policy%20to%20require%20only%208%20characters%20and%20digits%20and%20lowercase%3C%2FP%3E%3CP%3Echaracters%20--%26gt%3B%20check%20if%20that%20works%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Eif%20it%20works%20--%26gt%3B%26nbsp%3B%20add%20uppercase%3C%2FP%3E%3CP%3Eif%20that%20works%20--%26gt%3B%20change%20policy%20to%2012%26nbsp%3B%3C%2FP%3E%3CP%3EIf%20that%20works%20--%26gt%3B%20add%20complexity%20requirement%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%3EAlso%20beware%20Users%20with%20passwords%20that%20meet%20the%20requirement%20are%20still%20prompted%20to%20change%20their%20passwords.%3C%2FSPAN%3E%3C%2FP%3E%3CP%3EI%20know%20it%20can%20take%20a%20lot%20of%20time...%20but%20troubleshooting%20always%20does%20%3A(%3C%2Fimg%3E%20..%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2325895%22%20slang%3D%22en-US%22%3ERe%3A%20-2016281112%20(Remediation%20failed)%20-%20Minimum%20Password%20Length%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2325895%22%20slang%3D%22en-US%22%3EHi%2C%3CBR%20%2F%3E%3CBR%20%2F%3EI%20tried%20all%20the%20ways%2C%20but%20I'm%20still%20getting%20the%20device%20as%20non-compliant%2C%20and%20the%20error%20message%20is%20the%20same.%20I%20also%20test%20it%20with%20the%20assigned%20compliance%20policy%20without%20any%20result.%3C%2FLINGO-BODY%3E
Occasional Contributor

Hi all, 

 

I have been applied the Intune policy about minimum password length, to more than 100 clients but for 20 of them. 
My password policy has a minimum of twelve characters, one Upper case, one Lower case, one number & one special character. The user password meets the policy but, I'm still getting the device as non-compliant.

I'm getting the error message below :

Capture.PNG

 

Thanks in advance

11 Replies
Hi,

COuld you disable the "special character" as test? to see what happens .

Take a look at this uservoice..

https://microsoftintune.uservoice.com/forums/291681-ideas/suggestions/38371480-intune-device-profile...

Hi,
Thank you for your response.
I tested it last week, but it didn't work for my case.

@George Grammatikos 

 

HI

 

I suspect it has to do with the set and get commands

 

The problem is that this CSP only supports Add Operation, which means the Get Operation will always fail because it has not been implemented.

 

We are getting the same error when we are pushing a device configuration policy to set the Password... Of course, this succeeds, but getting the result.... most of the times it fails

Rudy_Ooms_0-1620020144931.png

 

But you are mentioning non-compliant errors? Could you show your device securitycompliance requirements?

 

 

 

@Rudy_Ooms 

 

Hi,
Please, check the system security section in the device compliance policy

Capture1.PNG

Hi,

Just wondering ( I am setting up a test vm right now) did the problem users also tried to change their password themself on the device itself and trying to check the compliance status in the company app?

 

I am missing the password type and password complexity in your screenshot? Or did you leave it on default?

 

Rudy_Ooms_0-1620029400891.png

 

And are the devices: 

 

azure ad joined or domain/hybrid joined

 

Did you also disabled Windows Hello?

 

And did you also read the docs from microsoft about this topic

 

Policy CSP - DeviceLock - Windows Client Management | Microsoft Docs

 

The enforcement of policies for Microsoft accounts happen on the server, and the server requires a password length of 8 and a complexity of 2. A complexity value of 3 or 4 is unsupported and setting this value on the server makes Microsoft accounts non-compliant.

@Rudy_Ooms 

Hi,

 

One user changed his password but, he is having the same issue.
The Password type setting is the default one.
The devices are joined to an Azure AD.
The Windows Hello for some of the devices is enabled and for some others disabled.
The password has a minimum of twelve characters, x1 Upper case, x1 Lower case, x1 number & x1 special character.

@George Grammatikos 

 

Hi. As you know I sent you a private message with some tips.

For anyone else reading this question:

 

 

Hi, 

 

I guess when I need to troubleshoot this. I would change one setting at a time.

 

If you take a look at the Microsoft doc I linked to...  

*

Rudy_Ooms_0-1620139302030.png

 

Rudy_Ooms_1-1620139301874.png

 

 

https://microsoftintune.uservoice.com/forums/291681-ideas/suggestions/38371480-intune-device-profile...

 

I guess you have got 2 options.

 

*Remove that part of the compliance policy as it is not working (uservoice says the same?)

*Change the password compliance policy to require only 8 characters and digits and lowercase

characters --> check if that works

 

if it works -->  add uppercase

if that works --> change policy to 12 

If that works --> add complexity requirement

 

Also beware Users with passwords that meet the requirement are still prompted to change their passwords.

I know it can take a lot of time... but troubleshooting always does :( ..

Hi,

I tried all the ways, but I'm still getting the device as non-compliant, and the error message is the same. I also test it with the assigned compliance policy without any result.
best response confirmed by George Grammatikos (Occasional Contributor)
Solution

@George Grammatikos 

 

Hi

 

So even only specifying: Require 

Password type --> Default

Minimum password --> 8 

 

Is  giving you non compliant errors in a new device compliance policy

Rudy_Ooms_0-1620214732098.png

 

@Rudy_Ooms 

 

what do you mean it has not been implemented?

@Techn0phile 

 

What I am trying to say. Is that when you create some device configuration policies like this example to create a local admin user and a corresponding password.

 

Rudy_Ooms_1-1631774901941.png

It will always fail...  (the reporting) even when the user and the password were created.

 

To quote someone (have it in my internal docs... but.. not sure who said it )

 

The error here is due to the status check mechanism that is implemented within. In general, when Intune tries to determine if the policy takes effect on the target device, it calls Get Operation of the interested OMA-URI, which basically queries the registry key value from the client. And then compare the result with the policy value.
The problem is that this CSP only supports Add Operation, which means the Get Operation will always fail because it has not been implemented. That's why we get the error even if it successfully applied.