none
Change/Modify/Edit the failed Password Complexity dialog

    Question

  • In previous versions of Windows, when a user changes their password but fails to meet the domain requirements of the password policy, the error message was quite helpful (albeit that KB821425 made it better). However, in Vista we seem to have got worse. All it now says is; "Unable to update the password.  The value provided for the new password does not meet the length, complexity, or history requirements of the domain." Which doesn't tell the use WHAT the requirements are in detail; ie: how many characters, what the complexity rules are or how many passwords are remembered (unlike in XP, 2003, 2000, etc.).

    So, does anyone know how to either put your own message in there, or tell Vista to give more detail?

    NB: The problem is NOT for me to identify, or change, the domain requirements. I know them quite well. It's my users that don't!

    Thursday, July 29, 2010 4:53 PM

Answers

  • Hi,

     

    Thanks for posting in Microsoft TechNet forums.

     

    For Windows 2000 SP4, Windows XP, and Windows Server 2003 computers, the display is written in the code of the O/S (specifically MSGina.dll). When a client changes their password, and the DC determines that it does not meet the complexity requirements, then the GUI displays a canned message that is written in the DLL.

     

    However, MSGina.dll is not supported on Windows Vista and later systems. Currently, there is no way to modify the message.

     

    As a work around, I recommend you to send out an E-Mail to all of your employees telling them how to set complex password.

     

    Best Regards

    Dale Qiao
    TechNet Subscriber Support in forum. If you have any feedback on our support, please contact tngfb@microsoft.com


    Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread. ”
    Friday, July 30, 2010 4:47 AM
    Moderator

All replies

  • Hi,

     

    Thanks for posting in Microsoft TechNet forums.

     

    For Windows 2000 SP4, Windows XP, and Windows Server 2003 computers, the display is written in the code of the O/S (specifically MSGina.dll). When a client changes their password, and the DC determines that it does not meet the complexity requirements, then the GUI displays a canned message that is written in the DLL.

     

    However, MSGina.dll is not supported on Windows Vista and later systems. Currently, there is no way to modify the message.

     

    As a work around, I recommend you to send out an E-Mail to all of your employees telling them how to set complex password.

     

    Best Regards

    Dale Qiao
    TechNet Subscriber Support in forum. If you have any feedback on our support, please contact tngfb@microsoft.com


    Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread. ”
    Friday, July 30, 2010 4:47 AM
    Moderator
  • Hi,

    As this thread has been quiet for a while, we assume that the issue has been resolved. At this time, we will mark it as ‘Answered’ as the previous steps should be helpful for many similar scenarios. If the issue still persists, please feel free to  reply this post directly so we will be notified to follow it up. You can also choose to unmark the answer as you wish.
    BTW,  we’d love to hear your feedback about the solution. By sharing your experience you can help other community members facing similar problems. Thanks for your understanding and efforts.

    Best Regards
    Dale Qiao
    TechNet Subscriber Support in forum. If you have any feedback on our support, please contact tngfb@microsoft.com


    Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread. ”
    Monday, August 02, 2010 1:15 AM
    Moderator
  • While the question was "answered", the answer is more of a dodge than a resolution.  To avoid the feature regression, ideally Microsoft would provide the option for the message to be verbose and explain to the user what the policy is (like it did on XP) rather than leaving them to guess what the policy is, as it is now on Vista/Windows 7.  I realize that one might argue that it is a security concern to display this information, but offering it as an option would resolve the feature regression.

    Monday, August 09, 2010 8:33 PM
  • For Windows 2000 SP4, Windows XP, and Windows Server 2003 computers, the display is written in the code of the O/S (specifically MSGina.dll). When a client changes their password, and the DC determines that it does not meet the complexity requirements, then the GUI displays a canned message that is written in the DLL.

     

    However, MSGina.dll is not supported on Windows Vista and later systems. Currently, there is no way to modify the message.

     

    As a work around, I recommend you to send out an E-Mail to all of your employees telling them how to set complex password.

     

    Best Regards

    Dale Qiao
    TechNet Subscriber Support in forum. If you have any feedback on our support, please contact tngfb@microsoft.com

     

    This is a terrible "answer" - if you can call it that.

    The OP indicated that it is a Vista issue, and I am experiencing the same thing in Windows 7.

    Yes, it is driving our Help Desk crazy.

    If the problem was recognised, and fixed, in Windows 2K & XP, why did Microsoft just ignore the problem in subsequent releases? Isn't that waht QA and regression testing are for?

    Shame on you.

    Tuesday, January 11, 2011 8:19 PM
  • Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread. ”

    Agreed. Where the heck IS the "Unmark as answer" button???
    Tuesday, January 11, 2011 8:21 PM
  • This is not an answer, nor even an adequate workaround unless you send the e-mail the morning that a user will change his password.
    Tuesday, January 10, 2012 3:10 PM
  • Dale,

    Clearly Microsoft have removed functionality with later versions of their products. So my feedback is this: This is unacceptable for enterprise environments. There's no workaround or solution posted here. Sending emails to users before their password expires? Wow, talk about administration overhead.

    I saw in another post a Microsoft employee [Sandesh Dubey] post information about Fine Grained Password Policy as a suggestion... which has nothing to do with notifications to users... it's like he's just posted information about it for the sake of posting information: http://social.technet.microsoft.com/Forums/en-US/2ef62c6d-fcd8-45d3-9522-4fd8be7329a0/password-complexity-message

    I apologise for my post not being very helpful to the community, but I hope Microsoft reads this and gets those software developers to think up a proper solution to this issue; A generic message saying that the password doesn't meet the password policy, is unacceptable...

    Stefano

    Thursday, May 29, 2014 5:34 AM