Password Policy Enforcer Security Related Security for Windows

Improves network security by ensuring that users choose strong passwords
Password Policy Enforcer improves network security by ensuring that users choose strong passwords. Studies by the NSA, SANS and CERT have shown that weak passwords are a serious security vulnerability. Password Policy Enforcer checks every new password for compliance with the password policy and immediately rejects noncompliant passwords.

Windows has some basic password policy rules, but Password Policy Enforcer has many more rules to improve security. Password Policy Enforcer even allows you to create multiple password policies, and to assign those policies to individual users, groups, and Organizational Units.

Password Policy Enforcer is a software that ensures network security.

Password Policy Enforcer also reduces helpdesk operating costs, increases productivity, and minimizes user frustration by helping users to choose compliant passwords.

Here are some key features of “Password Policy Enforcer”:

· Helps users to choose passwords
Password Policy Enforcer helps users to choose a compliant password, thereby reducing the number of password related helpdesk calls. Users can see the password policy as they enter their password, and are told exactly why their password was rejected. Administrators can customize the policy messages in 31 languages.

· Multiple password policies
Password Policy Enforcer can enforce 256 different password policies in each domain. Policies can be assigned to users, groups, and Organizational Units. You can even configure PPE to exempt some accounts from the password policy, or allow administrators to bypass the policy when resetting a user’s password.

· Powerful password policy rules
Each PPE password policy has thirteen highly configurable rules. PPE can require users to comply with all enabled rules, or it can enforce a more tolerant policy that allows partial compliance. Administrators can even combine rules to create more complex rules such as “password must contain a numeric character, but not in the first position”.

· Advanced dictionary rule
Password crackers use dictionary and hybrid algorithms to crack the weakest passwords. These algorithms are extremely fast, sometimes yielding results in seconds. Other products may offer a dictionary rule, but the PPE dictionary rule is more effective at detecting vulnerable passwords. The PPE dictionary rule is also more configurable, allowing administrators to control non-alpha character detection, character substitution detection, bidirectional analysis, wildcard analysis, and match tolerance

· Integrated policy testing
PPE’s integrated policy testing allows you to quickly compare the PPE policy with your organization’s password policy. Use the test results to identify and correct configuration errors, and to determine if the password policy meets your security requirements.

· Password synchronization
PPE can execute a program or script whenever a user changes their password. The program or script can perform additional processing, such as synchronizing the user’s password with another system or application. The username and new password are passed to the program/script as command-line parameters.

· ANIXIS Password Reset integration
Password Policy Enforcer integrates with ANIXIS Password Reset, a self-service password management system that allows users to reset their password and unlock their account without calling the helpdesk.


· 30-day trial

What’s New in This Release: [ read full changelog ]

· A new Minimum Age rule similar to the Windows minimum password age rule. PPE’s Minimum Age rule allows you to enforce a different minimum password age for each PPE policy.
· A new Maximum Age rule similar to the Windows maximum password age rule. PPE’s Maximum Age rule allows you to enforce a different maximum password age for each PPE policy. This rule has six operating modes to permit gradual expiration of existing passwords, allowing the helpdesk to better deal with any increase in calls arising from the new policy.
· A new Keyboard Pattern rule rejects passwords that contain keyboard patterns such as qwerty. This rule has several advanced detection options, including a choice of keyboard layouts.
· A new First Character rule rejects passwords that do not begin with a character from an approved character set.
· A new Last Character rule rejects passwords that do not end with a character from an approved character set.
· A new Repeating Characters rule rejects passwords that contain excessive character repetition.
· The User Logon Name, User Display Name, and Similarity rules now have an automatic tolerance option to automatically set an appropriate tolerance during every password change.
· Now compatible with Windows Vista, including x64 editions.
· Improved support for user principal names [[email protected]] and down-level logon names [DOMAINuser].
· Automatically closes the Rejection Reason message when the Change Password dialog times out on Windows 2000, XP, and 2003.
· Improved handling of local account password changes.

See Demo – Download – Visit Author Site

Please comments and give ratings. You may also report of broken or incorrect link using comments box below. Thanks!