This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 23%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Hi all,
I'm have trouble configuring Kiosk on Intune. I get always an error about passwords complexity with autologon.
So I put my user and computer inside an OU where I checked Block Inheritance. Now inside this OU (that I called TEST) there aren't GPOs applied. Nothing.
But I continue to receive errors about passwords complexity.
In our domain we have also set Policies about passwords complexity inside Default Domain Policy GPO.
Now I'm thinking that Default Domain Policy GPO is applied to mine OU TEST also if I Block Inheritance on this OU. Can it be ? If yes, where can I find a Microsoft article where this thing is explained ?
And now, how can I solve this deadlock ? Should I create a new GPO only for passwords complexity that I will apply to my DC and remove all passwords policies from Default Domain Policy ?
If I do something like that will I solve? So new gpo for passwords complexity will not applied if I check Block Inheritance ?
or is there another way ?
Thanks who will reply.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(240, 77%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESG%3C/text%3E%3C/svg%3E)
Hey dude. I want to ask u if u find any work around about this problem. I implement mac-based authentication with NPS and i want to create users with the same username/passwd of mac from the machine. I have tried to disable the inheritance at this OU, also i have create a new GPO and i disable the passwd compleixty at this GPO and linked it to the correct OU and also enable forced for this GPO but and then i take the same error for password complexity. Thanks
Hi @Andrea
Have a read of this answer to the same question, which explains the password policy is applied at the domain level and not at the ou level. The best option would be apply a fine grain password policy to the users.
Gary.
