Wednesday, 13 January 2021

Finding AD accounts using password-not-required attribute

Scan and find accounts using pwned passwords, dormant accounts and more!
Email not displaying correctly?
View it in your browser.

Active Directory user accounts configured with password-not-required are dangerous as they allow an attacker to gain easy access to your environment. How do you find these accounts in your Active Directory

Using PowerShell, you can search Active Directory for the Password-not-required attribute and see which accounts on which this may be configured. Another approach is using this free tool that provides an automated way to gain visibility to not only blank passwords, but also many other dangerous passwords such as breached passwords. 

With a quick scan, you will be presented an overview containing various password vulnerabilities in your Active Directory. The individual reports can be accessed by clicking on them to reveal additional, more detailed information. Click here to learn more. 

Learn more

Copyright © 2021, All rights reserved.

Our mailing address is
123 South Broad Street, Suite 2530 Philadelphia, PA 19109