How to Disable Password Complexity requirements on Server 2016.

Last updated on May 28th, 2019

The "Password must meet complexity requirements" policy setting in Server 2016, determines the minimum requirements when passwords are changed or created. The rules that are included in the Windows Server password complexity requirements are part of Passfilt.dll, and they cannot be directly modified.

By default in Server 2016, passwords must meet the following minimum requirements:

1. Passwords must not contain the user's account name or parts of the user's full name that exceed two consecutive characters.
2. Passwords must be at least seven characters in length.
3. Passwords must contain characters from three of the following four categories:

a. English uppercase characters (A through Z)
b. English lowercase characters (a through z)
c. Base 10 digits (0 through 9)
d. Non-alphabetic characters (for example, !, $, #, %)

Disable Password Complexity requirements in Server 2016

This tutorial contains instructions on how to turn off the Password Complexity requirements on a Stand-Alone Server 2016 or in a Active Directory Domain Controller 2016.

How to Remove the Password Complexity requirements in Active Directory Server 2016 or a Stand Alone Server 2016.

Part 1. How to Disable Password Complexity requirements in Active Directory 2016.
Part 2. How to Disable Password Complexity requirements on a stand-alone Server 2016.

Part 1. How to Turn Off Password Complexity requirements in Active Directory Domain Server 2016.

To remove the password complexity in Active Directory 2016.

1. In Server 2016 AD Domain Controller, open the Server Manager and then from Tools menu, open the Group Policy Management. *

* Additionally, navigate to Control Panel -> Administrative Tools -> Group Policy Management.

Disable Password Complexity active directory 2016

2. Under Domains, select your domain and then right click at Default Domain Policy and choose Edit.

disable password complexity requirements active directory 2016

3. Then navigate to:

  • Computer Configuration\Policies\Windows Settings\Security Settings\Account Policies\Password Policy

4. At the right pane, double click at Password must meet complexity requirements.

disable password complexity requirements domain 2016

5. Select Define this Policy setting: Disabled and then click OK.

disable password complexity requirements active directory 2016

6. Finally, open Command Prompt as Administrator and give the following command to update the group policy.

  • gpupdate /force

image

Part 2. How to Turn Off Password Complexity requirements in a standalone Server 2016.

1. From Server Manager go to Tools and open Local Security Policy, or (additionally), go to Control Panel open Administrative Tools and then open the Local Security Policy.

disable password complexity requirements server 2016

2. Under Security settings, select Password Policy.
3. At the right pane, double click at Password must meet complexity requirements.

remove password complexity requirements server 2016

4. Select Disabled and then click OK.

disable password complexity requirements

5. Finally, open Command Prompt as Administrator and give the following command to update the group policy.

  • gpupdate /force

image

That’s it! Let me know if this guide has helped you by leaving your comment about your experience. Please like and share this guide to help others.

If this article was useful for you, please consider supporting us by making a donation. Even $1 can a make a huge difference for us in our effort to continue to help others while keeping this site free: