0 votes

We are looking for if Adaxes has a report we can run that will tell us if there are multiple users using the same or similar passwords? Is there any tool that we can run that acts like a PENTEST for adaxes? Are there ways to flag or prevent multiple users from being able to set a password that is the same as another users? I appreciate any information you may be able to provide. Thank You,

by (80 points)
0

Hey Jeff,

While you can't get the actual passwords for users, you can however get the password hashes.

Then you can use that information to understand if people have the same password.

Here is a good article on it: https://froqr.com/retrieving-password-hashes-from-active-directory/

May not directly be supported by Adaxes, but you can maybe get creative with the script. Haven't tried it in Adaxes, but if you're just curious, then you might find it useful running without Adaxes.

Hope this helps!

1 Answer

0 votes
by (294k points)

Hello Jeff,

Unfortunately, there is no such possibility. Active directory does not allow retrieving passwords as is and thus it is not possible to compare them.

Related questions

0 votes
0 answers

You do not need to create a trust between AD domains to manage them with an Adaxes service. When registering an AD domain, an account with administrative permissions ... control the user access to the managed resources, the Adaxes service uses Security Roles.

asked Apr 29, 2009 by Adaxes (560 points)
0 votes
1 answer

Is there a way to pull a report within Adaxes to find out how many computer objects a user will have associated to them?

asked Mar 2, 2022 by Tarun Sharma (20 points)
0 votes
1 answer

In order to add a managed domain does it have to be trusted by the primary domain adaxes is installed an running in? I have set up a domain for testing adaxes and it ... I have set my host file to point the untrusted domain to it's primary Domain Controller.

asked Oct 5, 2022 by mightycabal (1.0k points)
0 votes
0 answers

When the UPN being created is the same as an existing one except for the case. For instance, the new UPN is sally.fields but there's an existing Sally.Fields. The ... but then fails to create the AD account indicating that the UPN is not unique forestwide.

asked Jul 13, 2022 by sandramnc (870 points)
0 votes
1 answer

We used to run AD Audit and it would provide additional details on what was locking a user's account (workstation name, application, etc...). Is there are way with Adaxes ... on what is locking an account? Or a way to pull historical data on locked accounts?

asked Nov 16, 2020 by pulsifers (20 points)
3,588 questions
3,277 answers
8,303 comments
548,100 users