Security News > 2024 > January > How to secure AD passwords without sacrificing end-user experience
There are a few reasons why users resort to poor password practices, the main one being that the standard best practice advice does not align with with how people generate and remember passwords.
Arbitrary password changes, such as requiring users to change their passwords every 90 days, are also still a common practice in some organizations as a security measure to mitigate the risk of unauthorized access to user accounts.
Using longer passwords alongside a password deny database of breached passwords provides the best protection.
Specops Password Policy with Breached Password Protection allows organizations to block the use of over four billion known compromised passwords and prevents users from selecting them for their Active Directory account.
The requirement for the system to only accept strong, hard-to-crack passwords helps shift the burden away from the user and also enhances the end-user experience.
With Specops Password Policy you can enforce longer passwords, length-based password aging, and block the use of breached passwords in Active Directory.