"Michael D'Angelo" <nospamnmdange@phoenixworx.org> wrote in message
news:uxcrWS0rGHA.4296@TK2MSFTNGP02.phx.gbl...
> I'm not too familiar with writing regexes. Does anyone have a regex handy
> that mirrors the default complexity requirements for AD. I know there are
> a few additional reasons a password change could fail, but I'm hoping to
> at least save the trouble of trying to change the password for some of the
> time. (This is for an ASP.NET site using a modified AD
> MembershipProvider).
>
> The requirements MS describes are:
> The password contains characters from at least three of the following five
> categories:
> . English uppercase characters (A - Z)
>
> . English lowercase characters (a - z)
>
> . Base 10 digits (0 - 9)
>
> . Non-alphanumeric (For example: !, $, #, or %)
>
> . Unicode characters
>
>
>
> I could probably write a regex to require any particular one, but I don't
> know how to do the "at least three of the following five categories"
>

"Michael D'Angelo" <nospamnmdange@phoenixworx.org> wrote in message
news:O54$1wnsGHA.3496@TK2MSFTNGP06.phx.gbl...
>
> "Michael D'Angelo" <nospamnmdange@phoenixworx.org> wrote in message
> news:OS$fJlnsGHA.4872@TK2MSFTNGP02.phx.gbl...
>> Here is a much more reasonable one. Found a sample which helped.
>> Matches each of the 4 possible combinations (instead of 24 permutations)
>> of 3 out of the 4 categories.
>>
>> ^(?=.*[A-Z])(?=.*[0-9])(?=.*[^A-Za-z0-9]).{8,}$|^(?=.*[a-z])(?=.*[0-9])(?=.*[^A-Za-z0-9]).{8,}$|^(?=.*[a-z])(?=.*[A-Z])(?=.*[^A-Za-z0-9]).{8,}$|^(?=.*[a-z])(?=.*[A-Z])(?=.*[0-9]).{8,}$
>>
>>
>
> Hmmm, this seems to work with the .net regular expressions, but does not
> work with the ones built into IE.
>

"Michael D'Angelo" <nospamnmdange@phoenixworx.org> wrote in message
news:OS$fJlnsGHA.4872@TK2MSFTNGP02.phx.gbl...
> Here is a much more reasonable one. Found a sample which helped. Matches
> each of the 4 possible combinations (instead of 24 permutations) of 3 out
> of the 4 categories.
>
> ^(?=.*[A-Z])(?=.*[0-9])(?=.*[^A-Za-z0-9]).{8,}$|^(?=.*[a-z])(?=.*[0-9])(?=.*[^A-Za-z0-9]).{8,}$|^(?=.*[a-z])(?=.*[A-Z])(?=.*[^A-Za-z0-9]).{8,}$|^(?=.*[a-z])(?=.*[A-Z])(?=.*[0-9]).{8,}$
>
>

"Joe Kaplan (MVP - ADSI)" <joseph.e.kaplan@removethis.accenture.com> wrote
in message news:%23gK20EosGHA.1304@TK2MSFTNGP06.phx.gbl...
> The javascript regex implementation probably doesn't support positive
> lookahead (?=). That's just a guess. The .NET Regex system is very
> powerful by comparison and supports a lot of advanced features such as
> look ahead and look behind and atomic grouping.
>
> Joe K.
>
> --
> Joe Kaplan-MS MVP Directory Services Programming
> Co-author of "The .NET Developer's Guide to Directory Services
> Programming"
> http://www.directoryprogramming.net
> --
> "Michael D'Angelo" <nospamnmdange@phoenixworx.org> wrote in message
> news:O54$1wnsGHA.3496@TK2MSFTNGP06.phx.gbl...
>>
>> "Michael D'Angelo" <nospamnmdange@phoenixworx.org> wrote in message
>> news:OS$fJlnsGHA.4872@TK2MSFTNGP02.phx.gbl...
>>> Here is a much more reasonable one. Found a sample which helped.
>>> Matches each of the 4 possible combinations (instead of 24 permutations)
>>> of 3 out of the 4 categories.
>>>
>>> ^(?=.*[A-Z])(?=.*[0-9])(?=.*[^A-Za-z0-9]).{8,}$|^(?=.*[a-z])(?=.*[0-9])(?=.*[^A-Za-z0-9]).{8,}$|^(?=.*[a-z])(?=.*[A-Z])(?=.*[^A-Za-z0-9]).{8,}$|^(?=.*[a-z])(?=.*[A-Z])(?=.*[0-9]).{8,}$
>>>
>>>
>>
>> Hmmm, this seems to work with the .net regular expressions, but does not
>> work with the ones built into IE.
>>
>
>