Disable Strong Password Enforcement and Password Aging

By default Microsoft Windows Server 2012 enforces users in the Administrators group to use strong passwords. Home users often just want to create their own passwords or leave them blank.

1. Open the Start screen and click the Administrative Tools icon.
Administrative Tools at Start screen

2. In Administrative Tools folder, pharmacy double click the Local Security Policy icon, recipe expand Account Policies and click Password Policy. In the right pane double click Password must meet complexity requirements and set it to Disabled. Click OK to save your policy change.
Disable password complexity requirements

3. Optionally you can also choose to never let passwords expire. To do this open the Maximum password age policy and set set the value to 0. Click OK to apply the change.
Disable password aging


Continue to disable the Shutdown Event Tracker…

54 Responses to “Disable Strong Password Enforcement and Password Aging”

  • First, thank you… this guide is awesome.
    On my server, these settings are disabled under the Local Security Policy (WS2012 Essentials.) However, they can be changed under the Group Policies.

    From the charms, search Apps for “gpmc.msc” and start it.
    Group Policy Management -> Forest: YourServerName.local -> Domains -> YourServerName.local
    Select “Default Domain Policy” then right-click and select “Edit…” to open the Group Policy Management Editor.

    Group Policy Management Editor
    Computer Configuration -> Windows Settings -> Security Settings -> Account Policies -> Password Policy

    • I’m glad you like the guide and thanks for your comments! :)

      • Hi pro,

        I can not disable Password must meet complexity requirements because it’s unhide. Please help me! Thank you

        • The password does not meet the password policy requirements, just follow these steps to Disable Password complexity in Windows Server 2012

          In the Server Manager click on Tools and from the drop down click Group Policy Management
          Expand Forrest >> Domains >> Your Domain Controller.
          Right click on the Default Domain Policy and click on the Edit from the context menu.
          Now Expand Computer Configuration -> Policies -> Windows Settings -> Security Settings -> Account Policies -> Password Policy
          Double-click on the Passwords Must Meet Complexity Requirements option in the right pane.
          Select Disabled under define this policy setting:
          Click Apply then OK all the way out and close the GPO window

    • Thank you Mike.. now issue has been sorted out..

    • I configured the Group Policy like you said but still no luck, when i try to change a password, I still get the error saying that it doesn’t meet the right requirements. I checked back under Local Security Settings and the option to disable password complexity is still unchanged. Also, when I went into Group Policy editor and right clicked on “Default Domain Policy” like you said, I also clicked enabled thinking that the Group Policy would override the settings but alas, no such luck.
      I work at a small private school and want a generic student account for all the kids. The password has to be easy because I have Kindergartners logging in.
      Any help is appreciated.

    • MikeS You da Man! Not that its a big, but we need to add Policies in the chain below. ThankU ThankU

      Computer Configuration -> Policies -> Windows Settings -> Security Settings -> Account Policies -> Password Policy

    • Thank you for sharing, those password restrictions where locked on my server for some reason, your solution worked.

      Thank you.

    • Under Windows Server 2012 R2 Essentials this doesn’t work anymore. I found this Microsoft TechNet for the correct method to change the password policy. It’s surprisingly easy :)

    • Yes, indeed. I think The (Password must meet complexity requirements) by default is disable for one reason to protect a very important Machine in your organization, so, If we have one effective solution which is Group Policy Management we can do what we want and everything going to be okay.

      otherwise, special thanks and this guide is useful!

    • Thank God someone understands Active Directory.

    • Thanks a lot

    • Thanks a lot

      it is very helpful

    • Very awesome. I solved the problem.
      Thanks MikeS

    • Thank you MikeS. Your answer help’s me !!!!

    • Thanks a Lot
      It’s work properly.

  • Thanks, was a useful one this!

  • Mike – thanks so much for your addition. WSE2012 Group Policies had me stuck… Thanks a ton.


  • Thanks a lot ! It helps !

  • thanx a lot !!!!

  • still does not work. Even after making the changes to the group policy with the editor you still get the error message when adding a new user with less than adequate password.

  • After performing the group policy suggestion I ran gpupdate in the command prompt. It worked. Thanks!

  • Do you know how to do this on a core install that is not AD joined?
    GUI is great but I don’t want to install the GUI just to do this and then remove the GUI.

  • It also not work for me,
    I have navigate to local policy –> account policy and try to change default configuration of account policy container such as password length, complexity meet,.. yet it not able to change, it all disabled.
    Please help me solve this..

  • i disabled strong password complexity in windows 2008 server but still i unable to change my password with blank or simple passwords

    thank you

    Girmaw Zeleke
    hopping that you respond immediately

  • I have navigate to local policy –> account policy and try to change default configuration of account policy container such as password length, complexity meet,.. yet it not able to change, it all disabled.

  • Same for me.

    All grey and can’t change it, also for password minimal time before changing it.

  • Group policy method worked great. It’s been the same for a long time 2003 at least. Just make sure to update the GP. go to Command Prompt and type GPUPDATE /FORCE

  • I had the same issue I had to login to Domain Controller and then open command prompt. type secpol.msc and then run ( this will open up loacal local group policy on the Domain controller) . Security settings > Account settings > password Policy and change settings in there and close the window. Then run a gpupadte /force on client. That worked for me. :-)

  • Very great post. I just stumbled upon your weblog and wished to say that I have
    truly enjoyed surfing around your weblog
    posts. In any case I’ll be subscribing in your feed and I hope you write once more very

  • When Ioriginally commented I clicked the “Notify me when new comments are added” checkbox and
    now each time a comment is added I get four emails with the same comment.
    Is there any way you can remove me from that service?
    Bless you!

  • Magnificent beat ! I would like to apprentice while you amend your site, how can i subscribe for a blog web site?
    The account aided me a acceptable deal.
    I had been tiny bit acquainted of this your broadcast provided bright
    clear concept

  • Howdy jhst ѡanted tο ցive
    үоu а brief heads &#6489p and lеt уоu ҝnoѡ a few of tҺе pictures aren’t loading properly.
    І’m not ѕure ԝhy but Ι think itѕ a
    linking issue. І’&#7456e tried іt in tա&#1086 ԁifferent browsers ɑnd ƅoth ѕҺow tҺе ѕame гesults.

    Feel free to vusit my web blg :: adult

  • Aw, this was a really good post. Taking the time and actual effort to
    generate a really good article… but what can I say… I put things off a whole lot and never manage
    to get nearly anything done.

  • Quality content is the secret to attract the people to pay a quick visit the site, that’s what this
    site is providing.

  • You actually make it appear so easy together with your presentation however I find this topic to be really something that I believe I’d never understand.

    It sort of feels too complex and extremely extensive for me.

    I’m taking a look forward on your subsequent submit,
    I’ll attempt to get the hang of it!

  • Simply wish to say your article is as surprising. The clarity in your post
    is just cool and i can assume you’re an expert on this subject.

    Fine with your permission allow me to grab your feed to keep up to date with forthcoming post.
    Thanks a million and please carry on the rewarding

  • Tanto el licor de bellota, como la crema de bellota son productos muy demandados fuera de la región.

  • Wow! Finally I got a blog from where I know how to genuinely take useful facts concerning my study and knowledge.

  • Hi to every one, it’s genuinely a pleasant for me to
    go to see this web page, it consists of precious Information.

  • Hey there! I’ve been reading your website for some time now and finally got the courage to go ahead and give you a shout out from Austin Tx!
    Just wanted to say keep up the good job!

  • Do naprawy na jakiś czas. Na jaki jest to nie największych ilościach piękne
    samochody są pod opieką konsultanta. Z usług standardowych,
    które są to usługa, że obsługa przygotuje nam gotowe opcje wynajmu samochodów
    jest już polsce na okres zawierania kontraktów i kondycji naszego rynku wiele

    人気スーパーコピーブランド時計激安通販専門店私達は長年の実体商店の販売経験を持って、先進とプロの技術を持って、高品質のスーパーコピー時計づくりに 取り組んでいます。最高品質のロレックス時計コピー、カルティエ時計コピー、IWC時計コピー、ブライトリング時計コピー、パネライ時計コピー激安販売中商品の数量は多い、品質はよい。}}}}}}

  • Hey Mike,

    I was in the same situation as you. This rocked! Worked perfect – Thanks so Much!

  • it is help full answer thnx alot but when I go to password policy a diloge box appear which had two option endable or disable but the DISABLE option was not selected by me because the radio button of DISABLE option was also disable which was not selected by me Kindly help me if any one can…. :( :(

  • This website was… how do I say it? Relevant!!
    Finally I’ve found something that helped me. Kudos!

  • fantastic issues altogether, you just won a emblem new reader.
    What would you recommend about your submit that you just made some days in the
    past? Any sure?

  • Dear Team,

    very Nice Article,
    we was not able to Enable & Disable the password and other policy’s,

    Thanks for update the TechNet article for change the Password policy’s & others.


  • Hi,
    Very good guide. Was very helpful, especially the comments, because I had to change the Group Policy restrictions, not the local ones. And they were only affected, after running “gpupdate /force”. :)

Leave a Reply