Enzoic for Active Directory is an easy-to-install plugin designed to eliminate compromised passwords and credentials within an organization's Active Directory. It offers a frictionless way for system administrators to identify, monitor, and remediate unsafe passwords. The solution ensures that new passwords comply with configurable password policies and continuously monitors existing username and password credentials against Enzoic's active threat collection database. This process involves sending a partial hash for comparison, with full hashes of likely matches analyzed locally to ensure sensitive data remains within the environment. When a user's information is detected in a data breach, Enzoic automates remediation through a variety of configurable actions, such as requiring a password reset or disabling the affected account. This end-to-end solution aims to provide true continuous AD password protection, saving time for system admins through customization and remediation controls, and improving user experience by ending time-based password resets and reducing help desk calls. It also facilitates easy compliance, notably with NIST 800-63B guidelines, often with a single click. Unlike Microsoft Entra ID (formerly Azure Active Directory), Enzoic offers real-time updates for newly exposed passwords, continuous monitoring beyond initial creation or reset, and comprehensive checks for full credential pairs, addressing critical gaps in password security across hybrid cloud and on-prem environments. It is built on current industry best practices and NIST guidelines, enhancing overall security, creating a better user experience, saving time, and reducing administrative costs for organizations.

Features & Benefits

• Simple and Intuitive AD Security
  • Enzoic for Active Directory’s password monitoring protects organizations against the leading cause of data breaches: compromised credentials, saving time by eliminating periodic password resets and ensuring compliance with NIST standards.
  • Automated compromised password detection
  • Full credentials monitoring (username and password)
  • Custom password dictionary
  • Blocking of username derivatives
  • Fuzzy matching with common character substitutions
  • Root password and similar password detection
  • Password complexity options such as length, number, special characters, upper/lower case requirements
  • New real-time, as-you-type password guidance (version 3.6)
  • Screen user password changes
  • Customizable and brandable notifications
  • One-Click NIST 800-63B Compliance
  • Create separate group policies
  • Period summary report for admins
  • Easy SIEM integration
  • Reporting for users sharing passwords, blank passwords, passwords never set to expire, and stale accounts
• Continuous Password Protection
  • Provides ongoing monitoring of username and password credentials against an active threat collection database, ensuring credentials that were safe yesterday remain safe today.
• Automated Remediation
  • When a user’s information is detected in a data breach, Enzoic automates remediation with configurable actions including requiring a password reset or disabling an account.
• Enhanced User Experience
  • Eliminates time-based password resets and reduces help desk call volume by quickly and automatically responding to exposed credentials.
• Easy Compliance
  • Helps organizations easily meet NIST password policy guidelines, including NIST 800-63B, with one-click compliance.
• Seamless Integration
  • Enhances security across both cloud and on-prem environments, integrating smoothly with existing infrastructure and SIEM systems.