Check Password against Active Directory Policy

Question

I have a frontend which allows the User to change it's AD Password.

Is there a Way to get the password policy (for example fine grained) for a specific user and its properties (Length, Complexity...)
Is there a Way to check the string "xyz121" against this specific policy?

EDIT: I don't want to check against the current password stored in the active directory. I want to check if the new password would could be safed into active directory. For Example: User types in his NEW password "xyz121" and wants to change it but active directory just allows passwords with at least 8 chars.

Nope not a duplicate. I don't want to check if the current password. I want to validate a new one. See edit ;-) — mabstrei, Feb 25 '13 at 14:01
@Adriano Not a duplicate definitely. The question is different. — Konstantin Dinev, Feb 25 '13 at 14:05
The answer with higher score gives the hint. You have the Principal and you call the ChangePassword() method (instead of Validate). Wrong password will generate PasswordException. — Adriano Repetti, Feb 25 '13 at 14:14

score 1 · Answer 1 · edited May 23 '17 at 12:23

1

Trailing through SO and google came up with this - http://blogs.msdn.com/b/david_leblanc/archive/2007/10/11/checking-password-complexity.aspx

Started from this SO post - Determine AD password policy programmatically

Which led to this SO answer - https://stackoverflow.com/a/10549823/416574

which led to that above blog post. Hope that helps.

(Feel free to not upvote, this just seemed like too much text for a comment, but really no work here but googling).

edited May 23 '17 at 12:23

Community

1
1

answered Feb 25 '13 at 14:15

pstrjds

16,840
6
52
61

Original link has now rotted - 403 – dragonspeed Oct 06 '22 at 13:30

Check Password against Active Directory Policy

1 Answers1

Linked