I have just installed this web part in order to start using a form application login, I was able to create users. However there seems to be some hard coded byzantine password requirement. I even tried a 10 character password and it did not accept it. It seems to need something on the complexity of an email address. I thought that the user creation just totally wasnt working, untill i tried a password like 'firstname.lastname@example.org' which actually did work!
So do passwords need to have a @ sign in them or what? I am of the opinion that password requirements are ALWAYS a bad idea and lead to users simply writing down their passwords. Is this configurable? if so where? Also it would be nice if the form actually told you this is why it was failing as opposed to "Object reference not set to an instance of an object." which makes no sense to anyone!
I am going to take a look around the discussion area, but so far the closest answer i found says something like " i have changed my web.config to have users passwords with only 8 characters and no nonalphanumeric characters." So i gather that i can change a web.confg file somewhere to do this. I did a search for "password" in the web.config under the virtual directory for my site, but it didnt come up with anything besides the parameters to connect to the database.
How do I edit the "PasswordPolicy" ? anyone know