Custom change in 'Password must meet complexity requirements'

PM AM Corporation 1 Reputation point

Hello Team,

According to this URL: we can restrict user not to use there own names as password. Is there any other way where we can restrict user not to use any other custom words such as 'lone' or 'wolf' words in there passwords.

Also from below is there any way we can force to meet all 4 categories after that only allow to set password.

Password must meet complexity requirements
Contain characters from three of the following four categories:
-English uppercase characters (A through Z)
-English lowercase characters (a through z)
-Base 10 digits (0 through 9)
-Non-alphabetic characters (for example, !, $, #, %)

Please suggest


Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,576 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Hannah Xiong 6,221 Reputation points


    Thank you so much for posting here.

    The Passwords must meet complexity requirements policy setting determines whether passwords must meet a series of guidelines that are considered important for a strong password. Enabling this policy setting requires passwords to meet the requirements as we mentioned.

    The rules that are included in the Windows Server password complexity requirements are part of Passfilt.dll, and they cannot be directly modified. There is no built in way to restrict user not to use any other custom words and force to meet all 4 categories.

    We would have to write our own password dll filters. See here for the password filters.

    Hope the information is helpful. For any question, please feel free to contact us.

    Best regards,
    Hannah Xiong


    If the Answer is helpful, please click "Accept Answer" and upvote it.
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.