Skip to main content
Jamf Nation, hosted by Jamf, is the largest Apple IT management community in the world. Dialog with your fellow IT professionals, gain insight about Apple device deployments, share best practices and bounce ideas off each other. Join the conversation.

Mac password resets to AD not working

Posted: 7/17/17 at 6:48 AM by robiso22

Hi All,

Has anyone seen the case when a user tries to reset their Active Directory password through system preferences and have it return the error that the password doesn't meet complexity requirements? The passwords entered meet the complexity requirements...

CCA Badge CCE Badge CUG Badge Integrator Badge

Posted: 7/17/17 at 7:47 AM by bentoms

@robiso22 Might fall under a "cannot change in 24hours" rule?

CCT Badge CCA Badge

Posted: 7/17/17 at 9:36 AM by JustDeWon

The only time I seen it, is if it doesn't meet the password length, it's been used before, or the complexity requires a special character. @robiso22 .. It's using the rules currently set for AD

Posted: 7/17/17 at 10:41 AM by kowsar.ahmed

Seen it a few times and it was because the machine fell off the domain. Perhaps look into using Apple Enterprise Connect instead? It forces the keychain to stay in Sync too. Speak to your Apple Business rep...

Posted: 7/17/17 at 3:41 PM by alexjdale

My guess is the cooldown. A user here can't change their password within 3 days of the last change. It gives the same complexity message, which is misleading.

Posted: 7/17/17 at 6:06 PM by pchen_plaid

Is the clock skewed?

CCT Badge CCA Badge CCE Badge

Posted: 7/18/17 at 2:41 AM by rich.thomas

I used to get this regularly, it was just caused but the machine dropping off the domain. It wouldn't show that it had dropped off the domain, but all the symptoms were there and a re-bind made the issues go away.