0 votes

We are looking for if Adaxes has a report we can run that will tell us if there are multiple users using the same or similar passwords? Is there any tool that we can run that acts like a PENTEST for adaxes? Are there ways to flag or prevent multiple users from being able to set a password that is the same as another users? I appreciate any information you may be able to provide. Thank You,

by (80 points)
0

Hey Jeff,

While you can't get the actual passwords for users, you can however get the password hashes.

Then you can use that information to understand if people have the same password.

Here is a good article on it: https://froqr.com/retrieving-password-hashes-from-active-directory/

May not directly be supported by Adaxes, but you can maybe get creative with the script. Haven't tried it in Adaxes, but if you're just curious, then you might find it useful running without Adaxes.

Hope this helps!

1 Answer

0 votes
by (300k points)

Hello Jeff,

Unfortunately, there is no such possibility. Active directory does not allow retrieving passwords as is and thus it is not possible to compare them.

Related questions

0 votes
0 answers

You do not need to create a trust between AD domains to manage them with an Adaxes service. When registering an AD domain, an account with administrative permissions ... control the user access to the managed resources, the Adaxes service uses Security Roles.

asked Apr 29, 2009 by Adaxes (580 points)
0 votes
1 answer

Is there a way to pull a report within Adaxes to find out how many computer objects a user will have associated to them?

asked Mar 2, 2022 by Tarun Sharma (20 points)
0 votes
1 answer

In order to add a managed domain does it have to be trusted by the primary domain adaxes is installed an running in? I have set up a domain for testing adaxes and it ... I have set my host file to point the untrusted domain to it's primary Domain Controller.

asked Oct 5, 2022 by mightycabal (1.1k points)
0 votes
1 answer

I created a custom report based on the script supplied and it seems to be working because it returns a few results before throwing the attached error. Everything looks correct in the ... it to error out on some groups or why it would be returning a null-value?

asked 5 days ago by jrey98229 (20 points)
0 votes
0 answers

When the UPN being created is the same as an existing one except for the case. For instance, the new UPN is sally.fields but there's an existing Sally.Fields. The ... but then fails to create the AD account indicating that the UPN is not unique forestwide.

asked Jul 13, 2022 by sandramnc (870 points)
3,668 questions
3,353 answers
8,468 comments
549,177 users