Hello,
Thank you so much for posting here.
The Passwords must meet complexity requirements policy setting determines whether passwords must meet a series of guidelines that are considered important for a strong password. Enabling this policy setting requires passwords to meet the requirements as we mentioned.
The rules that are included in the Windows Server password complexity requirements are part of Passfilt.dll, and they cannot be directly modified. There is no built in way to restrict user not to use any other custom words and force to meet all 4 categories.
We would have to write our own password dll filters. See here for the password filters.
https://learn.microsoft.com/en-us/windows/win32/secmgmt/password-filters
Hope the information is helpful. For any question, please feel free to contact us.
Best regards,
Hannah Xiong
============================================
If the Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.