Every single time I install a new server for a client I have to go through these steps to change or disable password complexity on server 2008 and server 2011. When you install the new server software, the default Password Policy is set to the following:
– Enforce password history 24 passwords remembered
– Maximum password age 42 days
– Minimum password age 1 days
– Password must meet complexity requirements Enabled
– Store passwords using reversible encryption Disabled
Now don’t get me wrong, these settings as set by default by Microsoft is not a bad thing. These days you can’t have secure enough passwords anymore. I on the other hand like to set a password according to a password standard that we have in my company. The password is then set according to the client’s need together with my company password policy which include special characters and so on e.g. @@companyname@@001! (This is only an example and not the actual company password policy we use)
So when we then install the new server software, we change the Administrator password immediately according to what we want it.
Here is how to disable the password complexity on Server 2008 and Server 2011 so that you can put in the password that you want:
Go to START -> ADMINISTRATIVE TOOLS and open GROUP POLICY MANAGEMENT.
Browse down in the FOREST until you get to DEFAULT DOMAIN POLICY under your network domain name.
Right-click on DEFAUL DOMAIN POLICY and click EDIT.
On the right hand side double-click on PASSWORD MUST MEET COMPLEXITY REQUIREMENTS.
In the next window, select DISABLE and click OK
Now you can go to Active Directory Users and Computers and change your Administrator Password to whatever you want to without any password restrictions.