There can be additional requirement for example, password size, the default is 8 characters. Now just enforcing the password policy will not guarantee users are using strong passwords. A user can easily set a password like “Password1”, it will pass the Microsoft Active Directory password policy because it meets the above policy requirements. However, this password is very weak. Many such passwords can easily pass the Active Directory password policy. Users who are using these type of passwords become prime target of hacks. As an IT admin it is impossible for you to know who is using what passwords!
Why is this critical now? Over 2 Billion such passwords along with their “password hash” have been breached. Hackers have access to these passwords, breaching these types of passwords is very simple.
Active Directory (“AD”) is immensely popular with >90% of enterprises using it but the lion’s share do not properly protect it; leaving the keys to the digital kingdom within reach of many threats (inside and out)
