Article ID: 3653, created on Feb 8, 2008, last review on May 11, 2014

  • Applies to:
  • Helm 3


The full error in the Helm Logs will display as:

5/4/2003 10:39:46 AM modNTUsers.CreateUserAccount Automation error
The password does not meet the password policy requirements. Check the minimum password length, password complexity and password history requirements.

This occurs whenever you try to add a domain in Helm. The domain will likely be added to the list of domains in Helm but not to IIS or the domain file system.

The occurance of this error means that Helm can not create the NT users for the domain IIS account due to password restrictions in place on the server. You can view the restrictions by going to the MMC on the server.

Start > Programs > Administrative Tools > Local Security Policy

Select Account Policies / Password Policies in the launched MMC.

Check that the Effective Setting for "Password must meet complexity requirements" is Disabled and "Minimum password length" is 0 (zero)

If they are not then this is causing the error described. To change these double click on them and change the values. This will change the Local Setting. There is a time delay before the Effective Setting changes, due to some security protection put in place by Microsoft.

However, to make the change effective immediately then you can do use some command line queries.

Launch the Command Line tool on the server Start > Run and type:

Then at the prompt type:

net accounts /maxpwage:unlimited

and then:

net accounts /minpwlen:0

If you now go back to the Local Security Policy MMC (you will have to shut it down and restart it) you will see the changes have taken effect.

Domains can now be created using Helm.

110556ad4b9f1c73a3682661cd1dca89 152090ff5e9a05ea7e1cf0c248449638 6311ae17c1ee52b36e68aaf4ad066387

Email subscription for changes to this article
Save as PDF