Review: Enzoic for Active Directory

2020-01-21 05:30

"Enzoic for AD is a tool that integrates into Active Directory and enforces additional password rules to prevent users from using compromised credentials," the product's page says.

"Unlike products that only check passwords after they are saved, thus requiring subsequent reset by the user, Enzoic validates the password at the time it is being selected. Passwords are then continuously monitored to detect if they become compromised - with automated remediation and alerts. It helps organizations with NIST Password Guideline compliance in Active Directory."

A week before this test the full user database from game company Zynga was leaked on the internet, so we decided to test Enzoic for AD with the newly available leaked passwords.

We found a couple of such passwords, and they were successfully detected as breached passwords by Enzoic for AD. Good job!

Enzoic for Active Directory is a first-rate solution for ensuring that your users don't select passwords that were part of a breach.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/MLAptbaHsGk/

#activedirectory