Weak or compromised passwords are still one of the most common ways attackers get into an organisation’s network.
That’s why running password audits in Active Directory is so important. But smaller companies often don’t have the time, budget, or resources to do them regularly.
Our latest blog post gives you a step-by-step guide to run a proper password audit using free tools available online.
Read here: https://www.pentestpartners.com/security-blog/how-to-conduct-a-password-audit-in-active-directory-ad/
Why do audits and training matter?
Without regular audits to spot gaps, and proper staff training on how to create strong, secure passwords, breaches can and do happen. Technical tools alone won’t stop them.
In most cases, the weakest part of the system isn’t the technology, it’s the people using it. That’s why it is important to train users on how to set strong passwords, which can then be audited.