lal_gs
asked on
Is there a password filter file to download for WIndows server 2012 R2?
Hello,
As per one of the auditing reports, I am supposed to change the following registry key to include the file
EnPasFltV2x64
HKEY_LOCAL_MACHINE\System\ CurrentCon trolSet\Co ntrol\LSA\ Noti
fication Packages.
The scan was performed on a test Windows 2012 R2 server.
I am unable to find this on Microsoft web site or may be there is none required for 2012. Though the report only says these are applicable to 2008 R2 servers, 2008 server etc but does not mention that it is applicable to Windows 2012 that the scan was done.
Am I missing something?
I could not find any solution to this on expert exchange too.
Please help.
The scan result is as follows:
Test Status Severity Time
Strong Password Filtering Failed 0 10/29/14 3:49
PM
Description This test verifies that strong password filtering is configured on this system. With this configu
ration, passwords must contain at least one lowercase letter, one uppercase letter, one num
ber, and one special character. Strong passwords help to protect a system from password
guessing attacks.
Rules Policy Registry Values
Element Equals (case insensitive) "HKEY_LOCAL_MACHINE\System \CurrentCo ntrolSet\C ontrol\LSA |
Notification Packages"
Version conditions If an element version has no content, the condition should:Fail Regular expression: /\benp
asfltv2x(86|64)\b/ (Flags:Case insensitive) Notification Packages Exists
Thank you,
Lal_gs
As per one of the auditing reports, I am supposed to change the following registry key to include the file
EnPasFltV2x64
HKEY_LOCAL_MACHINE\System\
fication Packages.
The scan was performed on a test Windows 2012 R2 server.
I am unable to find this on Microsoft web site or may be there is none required for 2012. Though the report only says these are applicable to 2008 R2 servers, 2008 server etc but does not mention that it is applicable to Windows 2012 that the scan was done.
Am I missing something?
I could not find any solution to this on expert exchange too.
Please help.
The scan result is as follows:
Test Status Severity Time
Strong Password Filtering Failed 0 10/29/14 3:49
PM
Description This test verifies that strong password filtering is configured on this system. With this configu
ration, passwords must contain at least one lowercase letter, one uppercase letter, one num
ber, and one special character. Strong passwords help to protect a system from password
guessing attacks.
Rules Policy Registry Values
Element Equals (case insensitive) "HKEY_LOCAL_MACHINE\System
Notification Packages"
Version conditions If an element version has no content, the condition should:Fail Regular expression: /\benp
asfltv2x(86|64)\b/ (Flags:Case insensitive) Notification Packages Exists
Thank you,
Lal_gs
ASKER
Hello David,
Thanks for your reply. I have gone through the article that you sent through the link. But that article does not pertain to my question.
For windows 2012 R2 servers, can I get a EnPasFltV2x64.dll? If so, where is it available.
The article has not addressed this part.
We are trying to enable "strong pasword filtering" for Windows 2012 R2 server.
Appreciate your help.
Thanks,
lal_gs
Thanks for your reply. I have gone through the article that you sent through the link. But that article does not pertain to my question.
For windows 2012 R2 servers, can I get a EnPasFltV2x64.dll? If so, where is it available.
The article has not addressed this part.
We are trying to enable "strong pasword filtering" for Windows 2012 R2 server.
Appreciate your help.
Thanks,
lal_gs
See http://iase.disa.mil/stigs/os/windows/Pages/index.aspx
Read this first http://iase.disa.mil/stigs/os/windows/Documents/u_enpasflt_readme.txt
Warning! Take care if you are unsure about what you are doing.
Read this first http://iase.disa.mil/stigs/os/windows/Documents/u_enpasflt_readme.txt
Warning! Take care if you are unsure about what you are doing.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
You might want to check out the product ActivePasswords. KISS and small, but very customizable!
Troubleshooting