Enzoic for Active Directory
Enable Password Policy Enforcement and
Daily Exposed Password Screening to Secure Passwords.
Enable Complete Password Filtering and Monitoring
Enterprises can easily adopt NIST password requirements and eliminate vulnerable passwords in Active Directory with our fully automated compromised password detection, custom password dictionary, blocking of username derivatives, fuzzy matching with common character substitutions, and continuous ongoing monitoring.
Try a quick free audit and check for your domain’s password vulnerabilities.
How Enzoic for Active Directory Works to Secure Passwords
Enzoic’s simple plug-in uses a standard password filter object to create a new password policy that works anywhere that defers to Active Directory, including Azure AD and third-party password reset tools.
When a new password is being created, a partial hash is evaluated against Enzoic’s massive, continuously updated database. A list of candidate hashes is returned for a local comparison and no data is stored by Enzoic.
As a result, if a password becomes unsafe, Enzoic automates remediation with configurable actions that include requiring password reset on next login.
Register and Start
“We selected Enzoic for Active Directory because it automates compliance with the NIST password guidelines and it can be installed in just a few minutes. It includes continuous exposed password filtering and if bad passwords are found, remediation is automated so it does not create any additional work for our IT team. The custom local dictionary in the newest version of Enzoic for Active Directory will enable us to block our company name, product names and some of the common words our employees may choose to use,” Said Peter Rios at Kingston Technology Company. “The experience is seamless for our users. It only impacts the users that are using bad or exposed passwords, all other accounts are protected without any additional friction.”
Enzoic For Active Directory Provides:
Periodic summary report for administrator
Updated password policy with blocking passwords containing: User's first or last name, user's login name and user's email
Customizable and brandable notification
Admin error reporting
One-click NIST compliance screen
Compromised user reporting
Root password detection
NIST Password Standards
The NIST recommendation is to screen for commonly used and compromised passwords to prevent people from selecting these easy to guess passwords.
Enzoic aids with NIST 800-63b requirements for real-time detection of unsafe passwords and eliminating the need for periodic password expiration. We continuously collect compromised passwords and aggregates cracking dictionaries to create a comprehensive blacklist of unsafe passwords.
Download the white paper, Automate Password Policy Enforcement & NIST Password Guidelines in Active Directory.
Automation Can Help Save The IT Team Time and Energy
The goal of Enzoic for Active Directory is to allow IT to set it up and then just let it run. When an existing password becomes vulnerable, the remediation steps are automated instead of manual intervention.
The most recent version of Enzoic for Active Directory can meet all the NIST criteria. It serves as a comprehensive, automated password blacklist that filters for weak, commonly-used, expected, and compromised passwords.
Organizations have unique needs, so automated responses can be customized when compromised or weak passwords are found. The organization can select the appropriate automated action and the timeline for that action. Alerts can also be sent to the user, the help desk and/or an admin.