Security News > 2020 > January > NIST 800-171 & Why Organizations Need Password Similarity Blocking in Active Directory
Other organizations are also adopting NIST password guidelines and security protocols because they reduce the risk for most organizations.
It easy for administrators to enforce a minimum password complexity with the standard Active Directory functionality but enforcing a character changes is more complex.
A common employee password behavior is using one root password and then use various iterations of it.
With password similarity blocking functionality, new passwords are screened by similarity to a former password using the Damerau- Levenshtein distance.
With Enzoic for Active Directory, the systems admin can determine the amount of difference that will be required between the old password and the new password.