Identity Manager (IDM): NMAS and password filter support for Microsoft password vulnerability validation in the cloud

Microsoft on premises and cloud based password ban support.

References:
https://docs.microsoft.com/en-us/azure/active-directory/authentication/concept-password-ban-bad-on-premises
https://docs.microsoft.com/en-us/azure/active-directory/authentication/concept-password-ban-bad

Basically, in the on-premises mode, a fussy match is performed on a password list (an edit distance of 1).
In the cloud setup, a cloud call is made to validate the password against an unpublished database of vulnerable password.

This MS feature ads a password filter (that is able to reject the password if it is vulnerable).
In order to support this,
1. NetIQ's password filter should not sync the rejected password (it should come after the filter of MS)
2. NMAS (SSPR?) should be able to do the same cloud call to validate the password against the unpublished database of vulnerable password

Stefaan

by: Stefaan V. | over a year ago | Other

Micro Focus Enhancement Requests Portal is moving. We are migrating the IDEAS from this site to the New Idea Exchange on May 6th. For more information on the new Idea Exchange please visit the Community FAQs.

1

NMAS and password filter support for Microsoft password vulnerability validation in the cloud

Comments