Complex password with special character

Hello Jon,

Passwords must meet complexity requirements determines whether password complexity
is enforced. If this setting is enabled, user passwords meet the following
requirements:

.. The password is at least six characters long.

.. The password contains characters from at least three of the following five
categories:

.. English uppercase characters (A - Z)

.. English lowercase characters (a - z)

.. Base 10 digits (0 - 9)

.. Non-alphanumeric (for example: !, $, #, or %)

.. Unicode characters


.. The password does not contain three or more characters from the user's
account name.

.. If the account name is less than three characters long, this check is not
performed because the rate at which passwords would be rejected is too high.
When checking against the user's full name, several characters are treated
as delimiters that separate the name into individual tokens: commas, periods,
dashes/hyphens, underscores, spaces, pound-signs, and tabs. For each token
that is three or more characters long, that token is searched for in the
password; if it is present, the password change is rejected. For example,
the name "Erin M. Hagens" would be split into three tokens: "Erin", "M",
and "Hagens". Because the second token is only one character long, it would
be ignored. Therefore, this user could not have a password that included
either "erin" or "hagens" as a substring anywhere in the password. All of
these checks are case-insensitive.

.. These complexity requirements are enforced upon password change or creation
of new passwords. It is recommended that you enable this setting.



Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm

> Hi!
>
> Is is possible to enforce the password complexity with special
> character? Active Directory should not accept any passsword without a
> single special charater.
>
> Regards.
>
 >> Stay informed about: Complex password with special character 

Thank you for your response.

Our Risk Management Group wants to force everyone to use special character
on their password. I need to ensure that everyone is complying with the
policy but I think even password complexity applied on the domain policy they
can still use password without using special character. How can I prevent
this?
 >> Stay informed about: Complex password with special character 

Hello Jon,

You can not force to use special characters, the complexity gives you the
options like described in my first answer.

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm

> Thank you for your response.
>
> Our Risk Management Group wants to force everyone to use special
> character on their password. I need to ensure that everyone is
> complying with the policy but I think even password complexity applied
> on the domain policy they can still use password without using special
> character. How can I prevent this?
>
 >> Stay informed about: Complex password with special character 

Dear Meinolf,

Thanks for the feedback. Do you have any idea if there are 3rd party
software to make this possible?

Regards,
Jon

"Meinolf Weber" wrote:

> Hello Jon,
>
> You can not force to use special characters, the complexity gives you the
> options like described in my first answer.
>
> Best regards
>
> Meinolf Weber
> Disclaimer: This posting is provided "AS IS" with no warranties, and confers
> no rights.
> ** Please do NOT email, only reply to Newsgroups
> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>
> > Thank you for your response.
> >
> > Our Risk Management Group wants to force everyone to use special
> > character on their password. I need to ensure that everyone is
> > complying with the policy but I think even password complexity applied
> > on the domain policy they can still use password without using special
> > character. How can I prevent this?
> >
>
>
>
 >> Stay informed about: Complex password with special character 

On Mon, 28 Jan 2008 15:58:01 -0800, Jon wrote:

> Thanks for the feedback. Do you have any idea if there are 3rd party
> software to make this possible?

http://www.google.com/search?q=custom+password+filter+active+directory...s=com.m*&ie=UTF-8&oe=UTF-8&startIndex=&startPage=1
--
Paul Adare
MVP - Virtual Machines
http://www.identit.ca
People who deal with bits should expect to get bitten. -- Jon Bentley
 >> Stay informed about: Complex password with special character 

Hello Jon,

No never heard about. Better try to advise your boss to choose long password
over 16 characters and the settings you have.

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm

> Dear Meinolf,
>
> Thanks for the feedback. Do you have any idea if there are 3rd party
> software to make this possible?
>
> Regards,
> Jon
> "Meinolf Weber" wrote:
>
>> Hello Jon,
>>
>> You can not force to use special characters, the complexity gives you
>> the options like described in my first answer.
>>
>> Best regards
>>
>> Meinolf Weber
>> Disclaimer: This posting is provided "AS IS" with no warranties, and
>> confers
>> no rights.
>> ** Please do NOT email, only reply to Newsgroups
>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>>> Thank you for your response.
>>>
>>> Our Risk Management Group wants to force everyone to use special
>>> character on their password. I need to ensure that everyone is
>>> complying with the policy but I think even password complexity
>>> applied on the domain policy they can still use password without
>>> using special character. How can I prevent this?
>>>
 >> Stay informed about: Complex password with special character 

It is fairly simple to write one yourself, if you have the skills to do
that. If not, one product I would recommend is Password Policy Enforcer at
http://anixis.com/products/ppe/


Mark Burnett



"Jon" wrote in message

> Dear Meinolf,
>
> Thanks for the feedback. Do you have any idea if there are 3rd party
> software to make this possible?
>
> Regards,
> Jon
>
> "Meinolf Weber" wrote:
>
>> Hello Jon,
>>
>> You can not force to use special characters, the complexity gives you the
>> options like described in my first answer.
>>
>> Best regards
>>
>> Meinolf Weber
>> Disclaimer: This posting is provided "AS IS" with no warranties, and
>> confers
>> no rights.
>> ** Please do NOT email, only reply to Newsgroups
>> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
>>
>> > Thank you for your response.
>> >
>> > Our Risk Management Group wants to force everyone to use special
>> > character on their password. I need to ensure that everyone is
>> > complying with the policy but I think even password complexity applied
>> > on the domain policy they can still use password without using special
>> > character. How can I prevent this?
>> >
>>
>>
>>
 >> Stay informed about: Complex password with special character 

Thanks Mark. That software is cool.

"Mark Burnett" wrote:

> It is fairly simple to write one yourself, if you have the skills to do
> that. If not, one product I would recommend is Password Policy Enforcer at
> http://anixis.com/products/ppe/
>
>
> Mark Burnett
>
>
>
> "Jon" wrote in message
>
> > Dear Meinolf,
> >
> > Thanks for the feedback. Do you have any idea if there are 3rd party
> > software to make this possible?
> >
> > Regards,
> > Jon
> >
> > "Meinolf Weber" wrote:
> >
> >> Hello Jon,
> >>
> >> You can not force to use special characters, the complexity gives you the
> >> options like described in my first answer.
> >>
> >> Best regards
> >>
> >> Meinolf Weber
> >> Disclaimer: This posting is provided "AS IS" with no warranties, and
> >> confers
> >> no rights.
> >> ** Please do NOT email, only reply to Newsgroups
> >> ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
> >>
> >> > Thank you for your response.
> >> >
> >> > Our Risk Management Group wants to force everyone to use special
> >> > character on their password. I need to ensure that everyone is
> >> > complying with the policy but I think even password complexity applied
> >> > on the domain policy they can still use password without using special
> >> > character. How can I prevent this?
> >> >
> >>
> >>
> >>
>
 >> Stay informed about: Complex password with special character