What to do when you cannot reset passwords using ADUC snap-in?



 
Let’s consider a real life practical working scenario wherein when you try to reset passwords on an account using the Active Directory Users and Computers Snap-in, you completely fail to do so and get the following error message instead:

Windows cannot complete the password change for Userx because:The password does not meet the password policy requirements. Check the minimum password length, password complexity, and password history requirements.”
Now that we have come to know the error message, let’s discuss the primary cause behind the occurrence of the above mentioned error message.
As a matter of fact, there can be many reasons behind the occurrence of the aforementioned error message. Some of them are as follows:
  • According to the password length policy, your password is quite short
  • Your chosen password is been used more than the number of times specified by the password history
  • There is no capital letter and number in your password
  • Either your password policy is being applied but not defined
  • Too restrictive domain security password policy
Now let’s come to the resolution part.
In order to verify and set the password policy settings, perform the below mentioned following steps:
  1. Start the Active Directory Users and Computers snap-in.
  2. Right click the name of the domain.
  3. Click the Properties.
  4. Click the Group Policy tab.
  5. Click the Default Domain Policy.
  6. Click the Edit button.
    The Group Policy Editor starts.


  7. Click Computer Configuration -> Windows Settings -> Account Policies -> Password Policy.
  8. Check the below mentioned settings:
    Minimum Password Length, Password History, Password Complexity
  9. Click the Ok button.
  10. Quit the Group Policy Editor.
  11. Quit the Active Directory Users and Computers snap-in.
Although, you can verify and set the password policy settings using the aforementioned steps, a far better option is to use a professional and proficient third party Employee self service portal tool to reset your account password.

Lepide Active Directory Self Service is a professional and efficient Employee self service portal tool that is devised to enable users easily reset their account passwords without any help from the system administrator. 
http://www.lepide.com/secure-and-web-based-ad-self-service.html

1 comments:

Hey thanks for this blog post. Well just wanted to know that if in case like we have an enviorement where its been noticed that we cannot do a password rest as on the behalf of cross forest domain. Thanks for bringing notice about an application such as Lepide Active Directory Self Service as this tool has enabled to manage all the domain password at a single plat form. Thanks once again as this is an tool which has the capacity to enabled and manage all the domain password at a single time.

Thanks

23 September 2013 at 06:16 comment-delete

Post a Comment