Enforcing password history during password reset

Enforcing password history during password reset

In a world reeling under a large number of applications to make our life easier, it is a daunting task to remember the usernames and passwords for each and every application being used. Though administrators force users to change the passwords periodically, users always tend to find a loophole to ease their task. One such trick is using the old password again while resetting the password. This is not a good idea as it sounds. Intruders must just have to try a few old passwords if they happen to be a well-known person.

ADSelfService Plus, with its highly flexible password policy enforcer, helps to implement stringent password policies. It provides an option to prevent users from using the previous 'n' number of passwords. The 'n' has to be configured by the administrators.

Steps to enforce password history   

  • Log in to the admin portal of ADSelfService Plus.

  • Go to Configuration > Self-Service > Password Policy Enforcer.

  • In the Select the Policy drop-down, select the policy for which password history must be enforced.

  • Enable the Enforce Custom Password Policy checkbox.

  • In the Restrict Repetition section, check the Number of old passwords to be remembered during password reset, and use the drop-down to select the number of passwords that must be remembered.

  • For example, if you select 5, users won't be able to use the previous 5 old passwords while resetting it.

  • Click Save.

password-policy-tips-and-tricks

 

 



      New to M365 Manager Plus?
      New to M365 Manager Plus?
        New to RecoveryManager Plus?
        New to RecoveryManager Plus?
          New to Exchange Reporter Plus?
          New to Exchange Reporter Plus?
            New to SharePoint Manager Plus?
            New to SharePoint Manager Plus?
                See all integrations
                New to ADManager Plus?
                See all integrations
                New to ADManager Plus?

                  New to ADSelfService Plus?

                  Start your free trial
                  Start your free trial

                    • Related Articles

                    • Password Policy Enforcer configuration

                      ADSelfService Plus' Password Policy Enforcer empowers administrators to implement advanced password policy controls, such as banning weak passwords and disallowing keyboard sequences, for users' on-premises AD accounts and cloud accounts, including ...

                    • ADSelfService Plus self-service password reset configuration: Reset & Unlock tab

                      Reset & Unlock tab The Reset & Unlock tab consists of settings related to the self-password reset and account unlock features. Learn how to configure these settings to suit your requirements. Here are the settings under the Reset & Unlock tab: Unlock ...

                    • Modify the password policy requirements text displayed on screen in ADSelfService Plus

                      Description ADSelfService Plus, by default, displays the password policy requirements (domain or fine-grained password policies) of a user in the change password and reset password screen. If you prefer to customize the password policy messages to ...

                    • Self-service password reset for Windows 7, 8, and 10

                      We've all had to reset a forgotten password at some point in our lives. But have you ever wondered what goes on behind the scenes when you initiate a password reset? Have you considered the security risks that can arise due to poor password ...

                    • Google Workspace password reset

                      G Suite admins can enable users to reset their passwords and recover their accounts without admin support. ADSelfService Plus, an Active Directory (AD) self-service password management and single sign-on solution, offers the Password Reset feature, ...

                      Related Products