Tech Community Live: Endpoint Manager edition
Jul 21 2022, 08:00 AM - 12:00 PM (PDT)

Device is marked non-compliant after implementing a password policy

%3CLINGO-SUB%20id%3D%22lingo-sub-2896911%22%20slang%3D%22en-US%22%3EDevice%20is%20marked%20non-compliant%20after%20implementing%20a%20password%20policy%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2896911%22%20slang%3D%22en-US%22%3E%3CP%3EI%20just%20created%20a%20windows%2010%20compliance%20policy%20with%20a%20password%20requirement%20and%20it%20is%20marking%20my%20device%20as%20non%20compliance%20even%20though%20the%20password%20is%20within%20the%20parameters.%20The%20exact%20policy%20causing%20the%20compliance%20issue%20is%20%22password%20complexity%22.%20I%20currently%20have%20it%20set%20to%20alphanumeric%20with%20Upper%2Flowercase%2C%20numbers%2C%20and%20special%20character.%20I%20have%20made%20sure%20my%20password%20fits%20the%20parameters%20(password%20set%20for%20microsoft%20account%20which%20is%20used%20to%20log%20in).%20I%20also%20am%20using%20biometrics%20and%20pin.%20Does%20the%20policy%20require%20me%20to%20disable%20pin%20and%20biometrics%20and%20require%20password%20only%3F%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-2896911%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3ECompliance%20Policy%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EIntune%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2902317%22%20slang%3D%22en-US%22%3ERe%3A%20Device%20is%20marked%20non-compliant%20after%20implementing%20a%20password%20policy%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2902317%22%20slang%3D%22en-US%22%3ECan%20you%20share%20a%20screenshot%20of%20the%20setting%3F%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2905691%22%20slang%3D%22en-US%22%3ERe%3A%20Device%20is%20marked%20non-compliant%20after%20implementing%20a%20password%20policy%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2905691%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F1166074%22%20target%3D%22_blank%22%3E%40keleka11%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EGetting%20a%20screenshot%20of%20the%20settings%20would%20surely%20help%20some...%3CBR%20%2F%3EBut%20you%20are%20mentioning%20the%20password%20complexity%20compliance%20policy%20and%20you%20are%20talking%20about%20an%20azure%20ad%20join%20device%20%2F%20HAADJ%3F%3C%2FP%3E%3CP%3E%3CBR%20%2F%3ELocal%20Accounts%2F%20Microsoft%20Account%20only%20--%26gt%3B%20AAD%2C%20AD%20not%20supported%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22Rudy_Ooms_0-1635690169553.png%22%20style%3D%22width%3A%20400px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F321947iC82AAA9B21AA4701%2Fimage-size%2Fmedium%3Fv%3Dv2%26amp%3Bpx%3D400%22%20role%3D%22button%22%20title%3D%22Rudy_Ooms_0-1635690169553.png%22%20alt%3D%22Rudy_Ooms_0-1635690169553.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2909434%22%20slang%3D%22en-US%22%3ERe%3A%20Device%20is%20marked%20non-compliant%20after%20implementing%20a%20password%20policy%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2909434%22%20slang%3D%22en-US%22%3ESorry%20I%20updated%20with%20pics.%3C%2FLINGO-BODY%3E
Occasional Contributor

I just created a windows 10 compliance policy with a password requirement and it is marking my device as non compliance even though the password is within the parameters. The exact policy causing the compliance issue is "password complexity". I currently have it set to alphanumeric with Upper/lowercase, numbers, and special character. I have made sure my password fits the parameters (password set for microsoft account which is used to log in). I also am using biometrics and pin. Does the policy require me to disable pin and biometrics and require password only? 

5 Replies
Can you share a screenshot of the setting?

@keleka11 

 

Getting a screenshot of the settings would surely help some...
But you are mentioning the password complexity compliance policy and you are talking about an azure ad join device / HAADJ?


Local Accounts/ Microsoft Account only --> AAD, AD not supported

 

Rudy_Ooms_0-1635690169553.png

 

 

Sorry I updated with pics.
Sorry I updated with pics. all devices are using microsoft 365 accounts.

@keleka11 

 

Hi , you could compare this with your own compliance policy .

So Microsoft accounts --> Digits, and digits and lowercase letters are required?

Rudy_Ooms_0-1635793596365.png