Hi;
I’m running Win2k server and win2k pro for workstations. Last week I accidentally imported a policy on the domain Controller and an hour later I realized that I couldn’t change any passwords or add new user. The error message is:

Window scan not complete the password change because:
The password does not meet the password policy requirements. Check the minimum password length, Password complexity, and password history requirements.

I checked all that, changed the requirements to 0 on Password Policy; I removed the policy and put new one that I edited on the local server, Domain and Domain controller and the problem still there. Clearly there is some thing that I’m missing.

How can I remove the effect of the policy from the DC?

I appreciate all the help I can get.

Thanks

look for Passfilt.dll on the system. If you imported a security policy that requires strong passwords, and it installed the dll, then the security requirements are hard-coded in the dll as follows.

This behavior occurs because the password is not compliant with the System Password Complexity policy. The Passfilt.dll file implements the following password policy:
Passwords must be at least six characters long.
Passwords may not contain your user name or any part of your full name.
Passwords must contain characters from at least three of the following four classes:Description Examples
English upper case letters A, B, C, ... Z
English lower case letters a, b, c, ... z
Westernized Arabic numerals 0, 1, 2, ... 9
Non-alphanumeric ("special characters") Punctuation marks and other symbols

These requirements are hard-coded in the Passfilt.dll file and cannot be changed through the user interface or registry. If you want to change these requirements, you must write your own .dll and implement it in the same way as the Microsoft version that is available with Windows NT 4.0 Service Pack 2.