Comments on: Disable Strong Passwords Enforcement

By: serkanulas

serkanulas — Fri, 11 Mar 2011 17:48:28 +0000

Thank you very much for all this usefull information avaliable here.
I am using server 2008R2 on my laptop, this operating system is really the one that I want.you are doing really good job.
Thanks again
Kindly regards

Arris: Thanks for your comment Did you notice that although much tweaks are the same, there is also a website dedicated to the R2 version of Windows Server 2008? It’s: http://www.win2008r2workstation.com. Enjoy your laptop with 2008 R2!

By: Adam

Adam — Tue, 09 Mar 2010 21:24:34 +0000

Re Mike:

There really isn’t anything called “Computer Configuration” listed under administrative tools in Windows 2008.

http://img717.imageshack.us/img717/3550/admintools.jpg

By: mike

mike — Tue, 09 Feb 2010 11:46:51 +0000

There is NO ‘Computer Configuration’ under administrative tools in windows 2008. Come on, at least post correct step links!!

Arris: Are you serious? I’ve seen that “folder” in all Windows versions I’ve used! Upload a (non-PhotoShopped) screenshot of what you see to convince me.

By: Sentayehu

Sentayehu — Mon, 12 Oct 2009 10:55:41 +0000

Some times ,you might see an inactive option buttons when you want to enable or disable the so called “Password meet Complexity requirements”

The best option can be to try Group policy editor Default Domain Policy>> Computer Configuration>> Windows Setting >> Security settings>> Account policy >>Password Policy.

then, you can see both options active.

Cheers!!

By: camiliosalomanda

camiliosalomanda — Fri, 02 Jan 2009 16:25:44 +0000

If you are joined to a domain or using this as a workstation slash domain controller as i am then you need to do this through the Group Policy Manager in the Administrative Tools under Computer Configuration>Policies>Windows Settings>Security Settings>Account Policies>Password Policies: Then you will be able to edit the password policy for the entire domain. I am using two server 08 as domain controllers and have three machines on the domain and it enforced the policy for all.

Arris: Thanks for this tip!

By: AC

AC — Wed, 03 Dec 2008 08:15:56 +0000

Students can currently get Server 2008 free through the DreamSpark program. I don’t really feel like buying a gaming OS to supplement my Linux install, thus I’m here.

By: NevTheTech

NevTheTech — Sun, 30 Nov 2008 10:20:24 +0000

Oh I forgot,

Why would anyone want to spend all that money on a Server operating system, then cripple it by running loads of CPU intensive services that aren’t needed to run a network? Just buy Vista and you have all the eye munchies without the extra expense of Server 2008. We all know that Vista and Server 2008 are basically the same OS just with specific services and programs either enabled or disabled according to what the machine will be used for. Using 2008 as a workstation is maybe interesting on a techie basis but I would seriously check your grip on reality if you actually consider doing this in the workplace. Don’t let your boss catch you either (or at least anyone who knows anything about computers – so your boss is probably OK actually.)

By: NevTheTech

NevTheTech — Sun, 30 Nov 2008 10:10:43 +0000

Hi,

This password settings solution rarely works (just google for “password complexity 2008″ and you’ll see what I mean) – The only solution I found was to create a new Group Policy, unlink and unenforce the default policy then disable the “Inherit settings” from your new policy. Then set the password settings as above and set the Link and Enforce settings for the new policy.

Phew!! – After all that open a command prompt and run “GPUpdate /force”

I couldn’t find any instructions on the Net that actually explained this in an understandable way, even at MSDN! – This finally worked for me, however I AM running a domain so all GP’s and GPO’s have to be linked to that domain. DO NOT DELETE THE DEFAULT POLICY – It’s needed by various system services (What a stupid thing to do MS!)

Hope this helps…

NevTheTech.

By: KOneInc

KOneInc — Thu, 23 Oct 2008 04:06:59 +0000

I also have the same problem. I tried to logon as Sys Admin but the GPE is still greyed out. How do I fix this? Arris: I don't know what the cause of this problem can be. If you ask your question at the Microsoft Technet Forums - Server 2008 section, I am sure you 'll get the solution!

By: Jonathan

Jonathan — Thu, 28 Aug 2008 04:48:36 +0000

I tried this and those options are greyed out? It won’t let me disable or change password length etc. Help

Arris: Are you sure you haven’t joined a domain and that (parts of) the Group Policy Editor are disabled by the Domain Administrator? That is the only reason I can think of.

By: Catto

Catto — Sat, 19 Jul 2008 12:47:16 +0000

Hey Now,
This was a great post. It’s just what I wanted to do. I also love the series of Windows Server 2008 as a workstation.

Thx 4 the info,
Catto

By: nate

nate — Mon, 09 Jun 2008 16:05:42 +0000

I noticed that a quicker way to get to that screen was: Administrative Tools -> Local Security Policy -> Account Policies -> Password Policy. Cheers!

Arris: That’s right but now we are already at the right location so we change two settings at once!

By: Mark4Dead/DayToDie

Mark4Dead/DayToDie — Mon, 09 Jun 2008 03:10:27 +0000

Admin, Maximum password age should be set to 0 so that password never expire.

Arris: Thanks, that’s useful information for the manual so added an extra step to this page! You are doing a very good job!