Security News > 2022 > September > Are Default Passwords Hiding in Your Active Directory? Here's how to check
2022-09-07 14:02
Many password spraying attacks specifically target default passwords.
The question is, how can you track down default passwords on your network once they're no longer useful? One of the best options is to use a free, read-only tool called Specops Password Auditor.
You can check for things like expired passwords, blank passwords, or passwords that are known to have been compromised.
Prevent the use of 3rd party default passwords in your Active Directory.
The other thing that you should be doing is to make sure that no vendor default passwords exist within your Active Directory environments.
One of the best options for preventing such passwords is to use Specops Password Policy, which allows you to create a custom list of banned passwords.