0 votes

Does Adaxes all one to setup/configure a custom dictionary with chosen words that will prevent passwords beign set with these words? Example: Many people use "Welcome", "Password", "Company Name" in their passwords when being set, can you set Adaxes to refuse certain words from being used in a password.

Helpdesk aslo often set End Users passwords with these easy Passwords and we trying to move awa from that to ensure a complex password is set, even from an Admin side when the first password is set for an Account

by (20 points)

1 Answer

0 votes
by (228k points)

Hello,

Out of the box, there is no such possibility in Adaxes. Password should only meet complexity requirements specified by AD domain password policies. As an option, you can use scripts in business rules (e. g. Before creating a user, Before resetting password of a user account) to validate passwords against certain rules. For an example, have a look at the following script from our repository: https://www.adaxes.com/script-repository/verify-complexity-requirements-for-user-password-s155.htm. It is also possible to update the script to check user passwords against a predefined list of words that are forbidden.

Related questions

0 votes
1 answer

I know I can set the "User must change password at next logon" flag, but noticed when I do that, they can no longer log in to Self-Service.

asked Oct 1, 2020 by RickWaukCo (300 points)
0 votes
1 answer

We have created a workflow for creating user accounts and would like the manager of the new user to be the approver for the account but the account is not created until it is ... to use a parameter as an approver. Is there a powershell way to do this maybe?

asked Jan 24, 2020 by mark.it.admin (2.1k points)
0 votes
1 answer

Hi, I would need to set a random plaintext in the header of the login page of one of the contexts (via custom HTML). This plaintext must be aligned with a ... . This would serve as a pseudo verification code for entering in the console. Thanks, Daniele

asked May 26, 2020 by dmaggiolo (20 points)
0 votes
1 answer

We have four OUs in Active Directory (Pending Deletion, Disabled with Mail Delegates, Disabled with HR Extensions and Disabled_Temp_Leave) that users are moved to prior to their eventual ... past 7 days have been moved to one of 4 of these OUs. Thanks!

asked Jun 3, 2021 by RayBilyk (220 points)
0 votes
1 answer

Hello again! I discovered to make the password reset function with default account options (force password reset on first logon checked, User Cannot Change Password and password never expired ... that I can add to my script, I just can't find the darn thing.

asked Nov 20, 2015 by drew.tittle (810 points)
2,803 questions
2,537 answers
6,609 comments
63,142 users