Home / server / Questions / 301811
Accepted
Rémy Roux
Asked: 2011-08-17 13:14:43 +0800 CST

Users can't change password trough OWA for Exchange 2010

  • 772

Here's our problem, users who want to change their password trough OWA get this error "The password you entered doesn't meet the minimum security requirements.", even if users are respecting the minimum security requirements.

With these settings, we have the error:

Enforced password history                          1 passwords remembered
Maximum password age                               185 days 
Minimum password age                               1 day
Minimum password length                            7 characters
Password must meet complexity requirements         enabled

With these test settings, we don't have an error: 

Enforced password history                          not defined
Maximum password age                               not defined 
Minimum password age                               not defined
Minimum password length                            not defined
Password must meet complexity requirements         not defined

People can change their password but there is no more security!

Just changing one parameter of the GPO for example "Enforced password history", brings back this error.

Here's our server configuration :

Windows Server 2008 R2

Exchange Server 2010 
Version: 14.00.0722.000

If anybody has a clue it would very helpful !

exchange security password exchange-2010 outlook-web-app

3 Answers

  1. Best Answer

    We had a similar issue. It was solved by setting the "Minimum password age" to 0 days.

    Setting it to 1 day will prevent users from modifying their password if it is less than a day old, meaning that if it was just reset or changed for testing purposes, you will have to wait 24 hours to change it again.

    Leave the complexity requirements as is, and set the minimum password age to 0 and try again.

    • 6

  2. I'd suspect the users AREN'T meeting the minimum security requirements if they are receiving that message. I wouldn't be surprised if the issue was with the Complexity Requirements being enabled. As per Technet:

    Passwords must meet complexity requirements determines whether password complexity is enforced. If this setting is enabled, user passwords meet the following requirements:

    The password is at least six characters long.
The password contains characters from at least three of the following:
    English uppercase characters (A - Z)
    English lowercase characters (a - z)
    Base 10 digits (0 - 9)
    Non-alphanumeric (For example: !, $, #, or %)
    Unicode characters
The password does not contain three or more characters from the
    user's account name.

    I'd say try disabling the Complexity Requirements to test again.

    • 1

  3. Issue was resolved by:

    1. Start IIS on Exchange Server
    2. Select Default Web Site
    3. Expand sub-sites
    4. Select OWA
    5. On right, double click Modules
    6. On Far right pane, click “Configure Native Modules”
    7. Check exppw, then click ok
    8. Reset IIS
    • 0