We launched a client site with the web.config file set to stricter-than-default password requirements. They have since requested that we reset back to the defaults (minimum length 4 / no non-alphanumeric characters).
This was done, and works if I am manually resetting user passwords as the Super User account, but when users attempt to reset their passwords using the password reset tool, they are receiving a "You must provide a valid password" error unless a length of 7 or more characters is entered.