acantril
commented
4 years ago so the issue here is that at the point in the course where this happens - there should be no password policy. anyone having this error is not following the course structure and is using preexisting accounts , not brand new ones. At this stage, it feels like this is almost a check on that.
Updated password pattern for bob user to correspond with IAM best practice password policy and included a constraint description if the user does not meet the password policy requirements. Before it would just say "does not meet AllowedPattern: ^[a-zA-Z0-9]*$" not necessarily telling the user what the actual problem is in plain english.
Password Policy: Minimum eight characters, at least one uppercase letter, one lowercase letter, one number and one special character
Resolves #3