Ok, Maybe i couldn't make me clear. I really intend to use this policy, but with my own criteria !!! Because in my scenario the default criteria is TOO restrictive, see : - Passwords may not contain your user name or any part of your full name. - Passwords must be at least six characters long. - Passwords must contain elements from three of the four following types of characters : English upper case letters, English lower case letters, Westernized Arabic numerals, Non-alphanumeric characters (special characters). Once i don't need all of this complexity, i'd like to completely redefine this criteria by myself. This could be implemented trought a Password Filter, wich is a .DLL that provides password policy enforcement and change notification. So once created and properly installed, my PassFilt.dll whould be an OVERRIDE to the above criteria, that was implemented by the original Passfilt.dll (distributed with SP2). Under NT 4.0, i have already done this, and it functions !!! But in Win2k, when passwords are changed, LSA call my .DLL, but either uses the default criteria, wich now implemented "i don't know where" causing it to be more restrictive yet. :(:(:( Anyway thank you for the reply ;););) ?