In all my years working with security there is a common misunderstanding about change a password and reset a password. The latter is also one of the big security issues in most companies - but they don't realize it...
Sanjay Tandon (Founder and CEO of Paramount Defenses Inc. And former MS blue badge) has written a great article about it. If you are working with AD and security, you should read this article, and the other ones he has published as well...
You find it here: http://www.active-directory-security.com/2014/06/Active-Directory-Account-Password-Security-101-For-Regulatory-Compliance-Auditors-The-Difference-Between-Change-Password-and-Reset-Password.html
No comments:
Post a Comment