Specops Password Policy
Active Directory Password Security and Compliance
- Active Directory Management
- Password Policy & Self-Service Password Reset
- On-Premises Software
What is Specops Password Policy?
Specops Password Policy enables you to simplify the management of fine-grained password policies in Active Directory.
With Specops Password Policy, you can continuously block over 4 billion unique compromised passwords, easily enforce compliance, and lower your support burden by giving end users a better security experience.
Specops Password Policy Main Benefits
Breached Passwords Blocked
- Breached Password Protection feature blocks and removes over 4 billion unique compromised passwords
- Continuous scan feature finds breached passwords daily, instead of only at password change or reset
- Includes passwords from real-time attack monitoring system that monitors live brute force attacks, plus malware-stolen data from our human-led Threat Intelligence team
Better User Experience
- Dynamic feedback reacts to user input, guiding them to create strong passwords they can actually remember
- Customisable SMS and/or email notifications to alert users if their password has been compromised
- Easy-to-understand, simple user experience avoids password frustration and fatigue, meaning fewer calls and emails to the support desk
Compliant Passwords Enforced
- Readymade compliance templates and reporting tool ensure you match standards .
- Comply with cybersecurity regulations (e.g. NIST, CJIS, NCSC, ANSSI,) and privacy regulations (e.g. CNIL, HITRUST, PCI)
Specops Password Policy Continuous Scanning
Specops Password Policy Features
Continuous Scanning
Continuous scanning against list of 4 billion (and counting) compromised passwords
Unlimited Custom Dictionary
Create an unlimited custom dictionary of blocked words unique to your organisation – use Regex to further customise requirements
Blocking Options
Block user names, display names, consecutive characters, incremental passwords, and reusing parts of current passwords to protect against targeted attacks
End-User Messaging
Informative end-user client messaging at failed password change that reduces calls to the helpdesk
MFA Integration
Client supports wrapping, making it easy to pair with your chosen MFA solution
GPO Targeting
Granular, GPO-driven targeting for any GPO level, computer, user, or group population
Restrict Compromised Passwords
Prevents the use of passwords being used in attacks happening right now
Password Complexity Enforcement
Length-based password expiration with customisable email notifications that rewards users with more time before the next reset when they set longer passwords
Dynamic Feedback
Real-time, dynamic feedback at password change with the Specops Authentication client
Language Support
Over 25 languages supported including English, French, German, Spanish, and Chinese
