Adaxes

Does Adaxes have a report to seek out users with the same password?

0 votes

We are looking for if Adaxes has a report we can run that will tell us if there are multiple users using the same or similar passwords? Is there any tool that we can run that acts like a PENTEST for adaxes? Are there ways to flag or prevent multiple users from being able to set a password that is the same as another users? I appreciate any information you may be able to provide. Thank You,

by (80 points)
0

Hey Jeff,

While you can't get the actual passwords for users, you can however get the password hashes.

Then you can use that information to understand if people have the same password.

Here is a good article on it: https://froqr.com/retrieving-password-hashes-from-active-directory/

May not directly be supported by Adaxes, but you can maybe get creative with the script. Haven't tried it in Adaxes, but if you're just curious, then you might find it useful running without Adaxes.

Hope this helps!

by (540 points)

1 Answer

0 votes
by (301k points)

Hello Jeff,

Unfortunately, there is no such possibility. Active directory does not allow retrieving passwords as is and thus it is not possible to compare them.

Related questions

0 votes
0 answers
Do I have to create a trust between two domains to manage them with the same Adaxes service?

You do not need to create a trust between AD domains to manage them with an Adaxes service. When registering an AD domain, an account with administrative permissions ... control the user access to the managed resources, the Adaxes service uses Security Roles.

asked Apr 29, 2009 by Adaxes (580 points)
0 votes
1 answer
Is there a way to pull a report within Adaxes to find out how many devices a user will have associated to them?

Is there a way to pull a report within Adaxes to find out how many computer objects a user will have associated to them?

asked Mar 2, 2022 by Tarun Sharma (20 points)
0 votes
1 answer
In order to add a managed domain does it have to be trusted by the primary domain adaxes is installed an running in?

In order to add a managed domain does it have to be trusted by the primary domain adaxes is installed an running in? I have set up a domain for testing adaxes and it ... I have set my host file to point the untrusted domain to it's primary Domain Controller.

asked Oct 5, 2022 by mightycabal (1.1k points)
0 votes
1 answer
Trying to figure out why the report fails with an error after returning a few results

I created a custom report based on the script supplied and it seems to be working because it returns a few results before throwing the attached error. Everything looks correct in the ... it to error out on some groups or why it would be returning a null-value?

asked Mar 28 by jrey98229 (20 points)
0 votes
0 answers
How can this be adapted to account for a UPN with the same name just in a different case?

When the UPN being created is the same as an existing one except for the case. For instance, the new UPN is sally.fields but there's an existing Sally.Fields. The ... but then fails to create the AD account indicating that the UPN is not unique forestwide.

asked Jul 13, 2022 by sandramnc (870 points)
3,679 questions
3,361 answers
8,504 comments
549,366 users