In a world reeling under a large number applications to make our life easier, it is a daunting task to remember the usernames and passwords for each and every application being used. Though the administrators force users to change the passwords periodically, users always tend to find a loophole to ease their task. One such trick is using the old password again while resetting the password. This is not a good idea as it sounds. Intruders must just have to try a few old passwords if they happen to be a well-known person.

 

ADSelfService Plus, with its highly flexible password policy enforcer, helps to implement stringent password policies. It provides an option to prevent users from using the previous 'n' number of passwords. The 'n' has to be configured by the administrators.

 

Steps to enforce password history:

 

1. Login to the admin portal of ADSelfService Plus. 
2. Go to Admin tab. 
3. Click Password Policy Enforcer from the left pane. 
4. In the Select the policy drop-down, select the policy to which password history must be enforced. 
5. Check Enforce Custom Password Policy. 
6. In the list of check boxes found, check No of old passwords to be remembered during password reset, and use the drop-down to select the number of passwords that must be remembered. 

            For example, if you select 5, users won't be able to use the previous 5 old  passwords while             resetting it. 

            7. Click Save.

 

Click here to know more about password policy enforcer of ADSelfService Plus.