![]() ![]() ![]() Furthermore, even though there are four character types (upper case, lower case, number, symbols), enabling complexity in the standard password GPO only requires a password contain three of them. Since most passwords change every 90 days, it’s very common to see passwords like “Summer2016” as the seasons also change every 90 days. What many domain administrators don’t realize, however, is that a password can be technically compliant while still being highly guessable. The present “best practice” tends to be eight characters with complexity, changed every 90 days. While most organizations have realized the importance of maintaining password standards, most overestimate how secure their users’ passwords are when they adhere to GPO rules. When I’m on an engagement, one of my favorite value-adds for a client is conducting an informal password audit. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |