How to disallow palindrome passwords using ADSelfService Plus
Having a secure password is of paramount importance to ensure the safety of your network. A password's strength depends on the length of the password, the different types of characters used, the number of repeated characters, the sequence of characters, and more.
When users use dictionary words or palindromes (a sequence of characters that reads the same both forward and backward), their passwords are easy to crack. This is why you need to strictly enforce policies that prevent the use of such passwords.
ADSelfService Plus is an identity security solution with multi-factor authentication, single-sign on, and self-service password management capabilities. You can create custom password policies using its Password Policy Enforcer feature and enforce them granularly based on OUs and groups in AD. It also provides the option to prevent users from creating passwords that are palindromes.
To restrict users from creating passwords that are palindromes:
Log in to ADSelfService Plus, and go to Configuration > Self-Service > Password Policy Enforcer.
Select the policy to which you want to apply the password policy enforcer rules.
Check the box next to Enforce Custom Password Policy.
Select Restrict Pattern and check the box next to Disallow palindrome passwords.
Click Save.
The Password Policy Enforcer also has various options that can prevent users from using dictionary words as passwords; restrict the use of a particular pattern of characters as passwords (example: qwerty, asdf, 1234); and require the use of a preset number of special, unicode, numeric, uppercase, and lower case characters. These options ensure users create strong passwords.
New to ADSelfService Plus?
Related Articles
Password Policy Enforcer configuration
ADSelfService Plus' Password Policy Enforcer enables admins to utilize advanced password policy controls like banning weak passwords and keyboard sequences for users' on-premises AD accounts and cloud accounts, including Microsoft 365 and Google ...How to prevent a brute force attack with ADSelfService Plus
What is a brute force attack? In a brute force attack, cybercriminals try to guess the password of a target user account, analyze the result, and try again until they succeed. This process could take anywhere from weeks to months. Though this method ...Implement granular password policies for users in the same AD domain
When sensitive information needs to be protected, complying with stringent password policies becomes essential. The default AD domain password policy lacks the flexibility to enforce different rules for different users and does not provide sufficient ...Enforcing password history during password reset
In a world reeling under a large number of applications to make our life easier, it is a daunting task to remember the usernames and passwords for each and every application being used. Though administrators force users to change the passwords ...How to reset passwords in Linux OS with ADSelfService Plus
IT admins are equipped to deal with much more than simple password reset calls from frustrated employees. However, when there's a huge spike in calls to unlock user accounts or reset passwords, the admin productivity is hindered and they're forced to ...