Windows 10 version 2004 adds new account password policies

added 04.06.2020 16:20

Image of article 'Windows 10 version 2004 adds new account password policies'

With security baseline draft release, Redmond also provides spreadsheets documenting all security settings and group policies for Windows 10 and Windows Server v2004 "along with the Microsoft-recommended configuration of those settings for well-managed enterprise systems."

The new 'Relax minimum password length limits' and 'Minimum password length audit' security settings added to Windows 10 and Windows Server, version 2004 will be available under Account Policies\Password Policy: Once added, the first will allow admins to require passwords between 14 and 128 characters until a multi-factor authentication strategy is implemented to properly secure their org's environments.

The Windows 10 security baseline enables enterprise security admins to use Microsoft-recommended Group Policy Object (GPO) baselines to boost the overall security posture and reduce a Windows 10 device's attack surface.

Microsoft announced the security baseline draft release for Windows 10 and Windows Server, version 2004, and the intention to add new account password length security policies with the Windows 10 May 2020 Update.

Microsoft previously dropped password-expiration policies and removed specific BitLocker encryption method and cipher strength settings from the Windows 10, version 1903 security baseline, as well as removed Exploit Protection settings and explicit enforcement of 30-day account password expiration for domain-joined devices from the Windows 10, version 1909 security baseline.