Policy
Set password rules level
Microsoft Office 5532.1000
Policy overview
Key metadata and intent for this policy.
This policy setting allows you to set the password rules level. If you enable this policy setting, you may specify a password rules level: - No password checks: There are no complexity checks - Local length check: Minimum length checks - Local length and complexity checks: Minimum length checks plus 3 of 4 character groups checks. - Local length, local complexity, and domain policy checks: All the previous checks plus Windows domain password rules enforced. If you select "Local length and complexity checks" or "Local length, local complexity, and domain policy checks," then the password must contain characters from at least three of four character sets: lowercase a-z, uppercase A-Z, digits 0-9, or non-alphabetic characters. When this complexity is enforced, the minimum password length needs to be at least 6, but can be more depending on the value set in the "Set minimum password length" policy setting. If you select "Local length, local complexity, and domain policy checks," then Microsoft Office will use the Windows domain policy as well as all the settings "Local length and complexity checks." This allows a custom password filter that is installed for Windows passwords to be used. If you are offline or a domain controller cannot be contacted, then the Windows password settings are not used, and only the "Local length and complexity checks" settings are used. If you don’t have a custom password filter, then "Local length and complexity checks" saves a trip across the network and would be the best choice. If you disable or do not configure this policy setting, the behavior is the same as if this policy setting were enabled and "No password checks" selected.
Registry values
How enabled and disabled states update the registry.
No explicit registry values are set for enabled or disabled states.
Policy elements
Inputs and configuration options exposed by this policy.
| Element | Type | Registry mapping | Constraints & behavior |
|---|---|---|---|
L_SetPasswordRulesLevelDropID ID L_SetPasswordRulesLevelDropID | enum | HKCU\software\policies\microsoft\office\16.0\common\security\passwordcomplexity\policylevel Type REG_DWORD | Options: No password checks (0), Local length check (1), Local length and complexity checks (2), Local length, local complexity, and domain policy checks (3) |
Other policies in this category
Explore related policies at the same level.
- UserActiveX Control InitializationWindows7
- UserAllow Basic Authentication prompts from network proxiesWindows7
- UserAllow file extensions for OLE embeddingWindows7
- UserAllow root or intermediate certificates as VBA trusted publishersWindows 10
- UserAllow specified hosts to show Basic Authentication prompts to Office appsWindows7
- UserAllow VBA to load typelib references by path from untrusted intranet locationsWindows 10
- UserAutomation SecurityWindows7
- UserBlock additional file extensions for OLE embeddingWindows7
- UserBlock all internet macros (ignore trusted locations or publishers)Windows 10
- UserBlock Insecure ProtocolsWindows7
- UserBlock loading of COM/VSTO add-ins registered in HKCUWindows 10
- UserBlock OLE GraphWindows7