Check user accounts and passwords against 1 billion vulnerable passwords obtained from data breach leaks
Scan for weak and compromised passwords that could be used as entry points by attackers
Audit your domain for stale or inactive privileged administrator accounts
Assess your domain password policies and fine-grained password policies to see if they’re enforcing users to create secure passwords
Identify accounts with expired passwords, identical passwords, blank passwords, and more
Measure the effectiveness of your policies against brute force attacks
Measure your policies against industry standards and get a compliance score
Comply with cybersecurity regulations (e.g. NIST, CJIS, NCSC, ANSSI,) and privacy regulations (e.g. CNIL, HITRUST, PCI)
“Specops Password Auditor provides a quick an easy method to get a view of how your organization is complying with company password policy. The drill downs allow me to view the information that is most important.”
Sr. Infrastructure Analyst
“Amazing lightweight tool which can be installed and used within minutes, provides key security information on what your users are doing with their password decisions and also their inactivity. Creates actionable spreadsheets and pdf’s so you can target the users who are using breached passwords.”
IT Services
Insights you will get from this audit
Overview of relative strengths of password policies including change interval and dictionary enforcement
Generate an executive summary PDF report to share your results with decision makers (available in English, French, or German)
Identify accounts using passwords from a list of over 1 billion compromised passwords
Export report data to CSV for further processing
Identify user accounts without a minimum password length requirement
Review administrator accounts and rights to help with least privilege implementation
Use standalone or integrate with Specops Password Policy for powerful management and remediation
Identify users who have not changed their password since a given date to help with a reset password directive or new password policy
Password expiration reports to curb password-related helpdesk calls
Identify dormant, stale, and inactive user accounts
How does Specops Password Auditor work?
What are the installation requirements?
Can Specops Password Auditor help me with compliance?
Does Specops Password Auditor store my data?
Can the audit show me how strong my password policies are?
