Using Specops Password Auditor
Note
This procedure describes the first launch of the tool. Subsequent uses will not require the import of the license file.
-
Open the tool.
Note
You can find the tool in the Windows Start menu in the Specops Software category.
-
Make sure the correct domain controller is selected in the Scan Roots field. Click Change if you want to change the domain root for scanning.
-
Check the Anonymize user data checkbox if you do not want to show any usernames in the reports.
Note
If you don't want to list usernames in reports, e.g. when sharing the report outside the organization, you can anonymize those usernames. Usernames will then be represented by generic designations (e.g. "user00001").
-
Click Start.
Note
If you are running Specops Password Auditor without a Specops Password Policy Breached Password Protection license, you will be presented with a window giving you the option to import a specialized Specops Password Auditor license (this can also be done by clicking the Import License link on the Start page). Clicking No here will run Specops Password Auditor in a limited capacity. You will see a summary of user accounts using leaked passwords. With a Specops Password Policy Breached Password Protection license, you can get additional details on the user accounts.
-
You will be presented with an option to run the scan against a large list of vulnerable passwords. You can:
- Skip the Breached Password Protection scan.
- Use a local version of the password list. Select this option if you have previously used the Breached Password Protection scan, and the version of the local files and latest version are the same.
- Download the latest version of the password list. Select this option if this is your first time running the Breached Password Protection scan, or the local files were published before the latest version. Click the Browse button to select a local folder where the password list will be stored.
-
Click Start Scanning.
-
Click Show Result to view the collected information.