Security News > 2021 > January > How Does Your AD Password Policy Compare to NIST's Password Recommendations?
This post will take a closer look at the NIST password guidelines and see how you can effectively audit your password policies to ensure these meet the standards recommended by NIST. NIST Password Guidelines and Best Practices.
According to NIST recommended password guidelines, this policy would not align with the NIST standard.
What if you have many different password policies with potentially many different password settings and configurations? How do you effectively audit your Active Directory Password Policies to see how they measure up to recommendations of NIST standards and others?
Local policy does not comply with NIST. If you click the "Red box" under NIST for the specific domain password policy, you will get a detailed look at why the policy fails to comply with the particular standard.
Using Specops Password Policy, you can easily implement the more advanced components of your Active Directory Password Policies, including custom dictionary files and breached password protection.
It automatically pulls all the settings of existing password policies in the environment and compares these with industry-standard cybersecurity frameworks, like NIST. Specops Password Policy enables easily implementing NIST recommendations and others such as custom dictionaries and breached password protection.