Share via

Intune Compliance Policy – Password Complexity Remediation Failed (Error 2016281112)

Djordje Petrovic 5 Reputation points
2026-04-07T15:05:06.23+00:00

I am experiencing an issue with an Intune compliance policy related to password complexity on Windows devices.

Here is the scenario:

  • I created a new Compliance Policy requiring:
    • Minimum password length: 7 characters
    • Password complexity (uppercase, lowercase, number, special character)
  • I also created a corresponding Configuration Profile (Settings Catalog – Device Lock) to enforce the same requirements.
  • The configuration profile is successfully applied (Status: Succeeded on all settings).
  • However, the compliance policy still reports:
    • Password complexity → Error 2016281112 (Remediation failed)

I tried to change my own password and sync account, but the error is still here.
How can I fix this?

Microsoft Security | Intune | Compliance

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Prathista Ilango 1,065 Reputation points Microsoft Employee
    2026-04-08T13:42:02.3066667+00:00

    Hello Djordje Petrovic,

    This looks like a delay in reporting/policy sync or check than a configuration error to me. If there is a possibility, try testing reverting back to the old complexity requirements, considering the password already meets this complexity requirement.

    For general troubleshooting guidance, refer to: https://learn.microsoft.com/en-us/troubleshoot/mem/intune/device-protection/error-deploying-password-policyIf you found the information above helpful, please Click Yes. This will assist others in the community who encounter a similar issue, enabling them to quickly find the solution and benefit from the guidance provided.

  2. Q&A Assist
    2026-04-07T15:05:21.3966667+00:00
    AI generated content. This question contains an answer created with AI from Q&A Assist. Learn more

    Error 2016281112 (Remediation failed) for password-related settings in Intune typically means the policy is not yet reflected on the device, even though the configuration profile is applied.

    For Windows desktop devices, password policies cannot be immediately enforced by device restriction/configuration policies alone. The device will continue to report a remediation failure until the user changes the password to meet the new complexity requirements.

    To resolve the issue:

    1. Ensure the user actually changes the Windows sign-in password on the device using the proper method:
      • On Windows: press CTRL+ALT+DELChange a password and set a new password that meets:
        • Minimum length: 7 characters
        • Required complexity (uppercase, lowercase, number, special character), as configured.
    2. After changing the password, trigger a manual sync from the device so Intune can re-evaluate compliance.
    3. Wait for the next compliance evaluation; the Password complexity setting should move from Error 2016281112 to compliant once the new password is in place.

    If the configuration profile is already in Succeeded state and the user password meets the policy, the remaining error is just the compliance engine still seeing the old state. Changing the password as above and syncing is required to clear it.

    Additionally, for Android and Windows desktop devices, it is recommended to use a device compliance policy (as done here) to enforce password settings, because this allows blocking noncompliant devices from company resources and supports grace periods and notifications. See the Windows compliance password options under System Security → Password for how these settings are evaluated.

    References:

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.