locked
63 characters maximum password length in 2008 R2 RRS feed

  • Question

  • We are having an issue on a customers 2008 R2 server where any password length of 63 characters or more results in the user being unable to change the password with the message starting that the complexity requirements are not met.  If the user enters a password of 60 characters it works fine.

    Is anyone aware of what might be causing this particular issue?

    Thanks

    Monday, February 13, 2012 7:23 AM

Answers

  • Hi,

    Thanks for your posting.

    After test and discussion, this is a development issue. Please create a new thread at
    Windows Server 2008 Application Compatibility and Certification forum:
    http://social.msdn.microsoft.com/Forums/en-US/winserver2008appcompatabilityandcertification/threads

    The reason why we recommend posting appropriately is you will get the most qualified pool of respondents, and other partners who read the forums regularly can either share their knowledge or learn from your interaction with us. 

    Thank you for your understanding.


    Lawrence

    TechNet Community Support

    • Marked as answer by Lawrence, Friday, February 17, 2012 1:13 AM
    Tuesday, February 14, 2012 7:45 AM

All replies

  • Hi,

    when you search in the internet you find some equal cases about to long passwords.

    Please take a look at:

    http://www.edugeek.net/forums/coding/61349-maxmimum-windows-password-length-64-unicode-chars.html

    http://exchangepedia.com/2007/01/what-is-the-real-maximum-password-length.html (Server 2003)


    Martin Forch

    Monday, February 13, 2012 7:39 AM
  • Hello,

    please see also http://social.technet.microsoft.com/Forums/en-US/winserverDS/thread/9b1ca756-4838-4192-97ba-277e48ab6541


    Best regards

    Meinolf Weber
    MVP, MCP, MCTS
    Microsoft MVP - Directory Services
    My Blog: http://msmvps.com/blogs/mweber/

    Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.

    Monday, February 13, 2012 8:31 AM
  • Did you verfity the password policy settings esp Minimum password length and complexitiy is not been set manually? Also, post the password policy settings here.

    Regards

    Awinish Vishwakarma

    MY BLOG:  awinish.wordpress.com


    This posting is provided AS-IS with no warranties/guarantees and confers no rights.

    Monday, February 13, 2012 8:52 AM
  • You don't happen to have any custom password filters in place - correct?

    If not, have you verified that the longer password does not violate other complexity requirements (e.g. contains account or full name)

    hth
    Marcin

    Monday, February 13, 2012 1:52 PM
  • We dont use custom password filters.  This is a stock standard 2008 R2 AD server. 

    The complexity requirements are just the defaults.  We are attempting to set this through API.  Is it possibly something there?

    Thanks

    Tuesday, February 14, 2012 2:35 AM
  • How exactly are you doing it then?

    hth
    Marcin

    Tuesday, February 14, 2012 3:03 AM
  • We are using the UserPrinciple object from the DirectoryService Library, eg:
    
    UserPrincipal ADuser = getUserInfo(username, false);
    
    ADuser.ChangePassword(oldPassword, newPassword);
    
    EDIT:  Just a bit more info.  Resetting the users password to greater than 64 characters works fine if you do it via the OS. i.e. Ctrl-Alt-Del - Change Pasword,  it only seems to be an issue when doing it via this API.

    • Edited by Caledor123 Tuesday, February 14, 2012 4:52 AM
    Tuesday, February 14, 2012 4:22 AM
  • Hi,

    Thanks for your posting.

    After test and discussion, this is a development issue. Please create a new thread at
    Windows Server 2008 Application Compatibility and Certification forum:
    http://social.msdn.microsoft.com/Forums/en-US/winserver2008appcompatabilityandcertification/threads

    The reason why we recommend posting appropriately is you will get the most qualified pool of respondents, and other partners who read the forums regularly can either share their knowledge or learn from your interaction with us. 

    Thank you for your understanding.


    Lawrence

    TechNet Community Support

    • Marked as answer by Lawrence, Friday, February 17, 2012 1:13 AM
    Tuesday, February 14, 2012 7:45 AM