Active Directory
A set of directory-based technologies included in Windows Server.
6,821 questions
Re-definition: Complexity Requirements "full name that exceed two consecutive characters"
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 89%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EK%3C/text%3E%3C/svg%3E)
kevinsa
0
Reputation points
Hi,
I am trying to understand the specifics of the AD-full name that exceed two consecutive characters strategy. I found and read this document, and after trying it out in a real environment, I came across some documentation(https://learn.microsoft.com/en-us/archive/msdn-technet-forums/d52f28d5-5c3f-4e06-b384-7fbee4707b6e & https://learn.microsoft.com/en-us/previous-versions/windows/it-pro/windows-10/security/threat-protection/security-policy-settings/password-must-meet-complexity-requirements). I would like to consult for more clarification and a clearer definition.
"When I found the following example in the article(https://learn.microsoft.com/en-us/archive/msdn-technet-forums/d52f28d5-5c3f-4e06-b384-7fbee4707b6e): 'the name "Joey M. Williams" would be split into three tokens: "Joey," "M," and "Williams." Because the second token is only one character long, it would be ignored. Therefore, this user could not have a password that included either "Joey" or "Williams" as a substring anywhere in the password.
I would like to confirm whether 'two consecutive characters' refers to two substrings like in the example: 'Joey + Williams,' or if it refers to any two characters from 'Joey' or 'Williams.' Please help me determine if the following passwords can be successfully changed:
1、JoeP@w0rd
2、JoeyP@w0rd
3、 WilP@w0rd
4、WilliamsP@w0rd
Thanks.
Sign in to answer