Disable Strong Password Enforcement and Password Aging

By default Microsoft Windows Server 2012 enforces users in the Administrators group to use strong passwords. Home users often just want to create their own passwords or leave them blank.

1. Open the Start screen and click the Administrative Tools icon.
Administrative Tools at Start screen

2. In Administrative Tools folder, pharmacy double click the Local Security Policy icon, expand Account Policies and click Password Policy. In the right pane double click Password must meet complexity requirements and set it to Disabled. Click OK to save your policy change.
Disable password complexity requirements

3. Optionally you can also choose to never let passwords expire. To do this open the Maximum password age policy and set set the value to 0. Click OK to apply the change.
Disable password aging


Continue to disable the Shutdown Event Tracker…

You may also like...

41 Responses

  1. uK says:

    it is help full answer thnx alot but when I go to password policy a diloge box appear which had two option endable or disable but the DISABLE option was not selected by me because the radio button of DISABLE option was also disable which was not selected by me Kindly help me if any one can…. 🙁 🙁

  2. Jim Reynolds says:

    Hey Mike,

    I was in the same situation as you. This rocked! Worked perfect – Thanks so Much!

  3. prawnik says:

    Do naprawy na jakiś czas. Na jaki jest to nie największych ilościach piękne
    samochody są pod opieką konsultanta. Z usług standardowych,
    które są to usługa, że obsługa przygotuje nam gotowe opcje wynajmu samochodów
    jest już polsce na okres zawierania kontraktów i kondycji naszego rynku wiele

  4. Zelma says:

    Tanto el licor de bellota, como la crema de bellota son productos muy demandados fuera de la región.

  5. When Ioriginally commented I clicked the “Notify me when new comments are added” checkbox and
    now each time a comment is added I get four emails with the same comment.
    Is there any way you can remove me from that service?
    Bless you!

  6. Vincent says:

    I had the same issue I had to login to Domain Controller and then open command prompt. type secpol.msc and then run ( this will open up loacal local group policy on the Domain controller) . Security settings > Account settings > password Policy and change settings in there and close the window. Then run a gpupadte /force on client. That worked for me. 🙂

  7. KCJET says:

    Group policy method worked great. It’s been the same for a long time 2003 at least. Just make sure to update the GP. go to Command Prompt and type GPUPDATE /FORCE

  8. Thierry PROST says:

    Same for me.

    All grey and can’t change it, also for password minimal time before changing it.

  9. Girmaw Zeleke says:

    I have navigate to local policy –> account policy and try to change default configuration of account policy container such as password length, complexity meet,.. yet it not able to change, it all disabled.

  10. Girmaw Zeleke says:

    i disabled strong password complexity in windows 2008 server but still i unable to change my password with blank or simple passwords

    thank you

    Girmaw Zeleke
    hopping that you respond immediately

  11. TIENG Chandara says:

    It also not work for me,
    I have navigate to local policy –> account policy and try to change default configuration of account policy container such as password length, complexity meet,.. yet it not able to change, it all disabled.
    Please help me solve this..

  12. Brad says:

    Do you know how to do this on a core install that is not AD joined?
    GUI is great but I don’t want to install the GUI just to do this and then remove the GUI.

  13. Josh says:

    After performing the group policy suggestion I ran gpupdate in the command prompt. It worked. Thanks!

  14. jkhuston says:

    still does not work. Even after making the changes to the group policy with the editor you still get the error message when adding a new user with less than adequate password.

  15. Basheer says:

    thanx a lot !!!!

  16. Robert says:

    Thanks a lot ! It helps !

  17. Aaron Booker says:

    Mike – thanks so much for your addition. WSE2012 Group Policies had me stuck… Thanks a ton.


  18. griff says:

    Thanks, was a useful one this!

  19. MikeS says:

    First, thank you… this guide is awesome.
    On my server, these settings are disabled under the Local Security Policy (WS2012 Essentials.) However, they can be changed under the Group Policies.

    From the charms, search Apps for “gpmc.msc” and start it.
    Group Policy Management -> Forest: YourServerName.local -> Domains -> YourServerName.local
    Select “Default Domain Policy” then right-click and select “Edit…” to open the Group Policy Management Editor.

    Group Policy Management Editor
    Computer Configuration -> Windows Settings -> Security Settings -> Account Policies -> Password Policy

Leave a Reply

Select Language »