1. Home
  2. Computing & Technology
  3. Internet / Network Security

Configuring Windows Vista Password Policy

From Tony Bradley, CISSP-ISSAP, for About.com

6 of 8

Password Must Meet Complexity Requirements

Double-click on the Password Must Meet Complexity Requirements policy to open the policy configuration screen.

Having a password of 8 characters is generally more secure than a password of 6 characters. However, if the 8-character password is "password" and the 6-character password is "p@swRd", the 6-character password will be much more difficult to guess or break.

Enabling this policy enforces some baseline complexity requirements to force users to incorporate different elements into their passwords which will make them harder to guess or crack. The complexity requirements are:

  • Password must not contain significant portions of the user's account name or full name
  • Password must be at least six characters in length
  • Password must contain characters from at least three of the following categories:
    • Uppercase characters (A through Z)
    • Lowercase characters (a through z)
    • Base 10 digits (0 through 9)
    • Special characters (for example, &, $, #, %)

You can use other password policies in combination with Password Must Meet Complexity Requirements to make passwords even more secure.

Explore Internet / Network Security
About.com Special Features

Stay connected and entertained with reviews on tips on the latest HDTVs, cellphones and more. More >

Easy ways to connect two computers for networking purposes. More >

  1. Home
  2. Computing & Technology
  3. Internet / Network Security
  4. Security 101
  5. Learn Computer Security
  6. Step-By-Step
  7. Configure Password Must Meet Complexity Requirements Policy Setting

©2009 About.com, a part of The New York Times Company.

All rights reserved.