As discussed in the office, the first feedback I have gotten about the new password rules is that the error message is confusing. It was intended for the pattern files which were dictonaries or rules for which a password was rejected.
But our new logic also has the rules for acceptable passwords. For such problems the current error message does not match.
My idea would be to use the configurable help string as the error, which we normally show as the tooltip. This way we could explain the password rules based on configuration.