Forum Discussion
glenmcleroy
May 28, 2020Brass Contributor
Secure Score - Resolve unsecure account attributes
The secure score preview has a measurement "Resolve unsecure account attributes." The description is "Every account in Active Directory has multiple attributes representing its security configurations. When misconfigured, these attributes can make these account more susceptible to cyberattacks. Setting these attributes in accordance to security best practices can greatly increase the security posture of your accounts."
Anyone know where any additional info for this is? Would be good to know what the referenced "best practices" are and if they are specific to Azure AD and/or AD. The "manage" link in SS doesn't seem to lead anywhere specific.
Thx!
- Here is another solution to this problem https://docs.microsoft.com/en-us/defender-for-identity/cas-isp-unsecure-account-attributes . I think that the Identity Secure score instructions should actually be pointing to this article
- Dean_GrossSilver ContributorHere is another solution to this problem https://docs.microsoft.com/en-us/defender-for-identity/cas-isp-unsecure-account-attributes . I think that the Identity Secure score instructions should actually be pointing to this article
- ndrfillmoreBrass Contributor
So I actually had the exact same problem. Its something you need to adjust on your local Domain. You can run a powershell script found here to identify users who don't have passwords required at login, and then set them correctly.
Active Directory Password not Required - IT for DummiesIT for Dummies