For some businesses, vulnerability and penetration testing is a deeply-ingrained process that just works. However, for many others, this exercise is less known – arguably a mysterious, if not a downright scary aspect of running an information security program.... Read More
Regular Expressions for password complexity
Specops Password Policy contains a number of granular complexity, history, and dictionary requirements for passwords. However, we cannot always anticipate every customer’s unique password requirements. In order to give our customers the flexibility to set unique rules for passwords... Read More
Configuring the OSX guest user feature for Password Resets
There are many reasons to set up guest accounts for your Mac users. By enabling end-users to logon to the Mac operating system, with limited functionality (as configured via Parental Controls), the feature can facilitate the password reset process... Read More
Using Firefox Enterprise GPO’s to Enable Windows Integrated Authentication to Specops Websites
Mozilla recently launched Firefox 60, which now includes official support for configuration via Active Directory Group Policies. For customers using Specops uReset, Specops Authentication, or Specops Password Reset, this means you can now set up your Firefox users to... Read More
35% unsure if they follow UK password compliance
The InsideTech report, Meeting Compliance Requirements in Password Security, examines the UK password compliance recommendations and what organizations are doing to comply. Recently Bill Burr, the father of passwords and author of the 2003 password security guidelines for NIST,... Read More
Windows error code 0x800708c5 when resetting a password using ADUC
We recently had a case where a customer saw the following unfriendly message during an administrator password reset against a user. The administrator performed the same reset from another DC in his environment (the same password against the same... Read More
Press Release: Specops enables organizations to block leetspeak in passwords
Stockholm, Sweden – April 19, 2018. Specops Software announced today the release of Specops Password Policy 6.8. The release enables IT departments to prevent users from circumventing the password dictionary by using character substitutions, also known as leetspeak. Leetspeak... Read More
Specops password dictionary overview and best practice
As long as users continue using common/predictable passwords, dictionary attacks will continue to work. However, hackers are not the only ones who can take advantage of password predictability. The best protection against a dictionary attack is using a dictionary... Read More
Confessions of an IT admin – O365 implementation experience
For its average user, over a 100 million of them, O365 equals seamless access to corporate data, and a ton of apps. For the IT administrator, it is a bigger attack surface, added complexities, and of course, a few... Read More
Strengthening knowledge-based authentication with graphical passwords
User authentication is a necessary component in any digital security process. Whether it’s a password to an online account, or answering a security question when the password fails, we are all familiar with the verification process carried out via... Read More