I'm using asp.nbet membership which very handily gives you the choice of enforcing a min password length and the minimum numeric characters. Can you define others like there must be one upper-case character, etc?
cheers
It looks like the only other option is minRequiredNonAlphanumericCharacters, so no. But that doesnt stop you from putting a validator on the Login control password field.