Aug 06 2019 07:08 AM
Hi,
Does Microsoft have any solutions for setting up banned passwords in an offline Windows domain?
BR
Aug 12 2019 09:40 AM
By offline, do you mean on-premises AD then yes banned passwords are supported for on-premises AD as well.
Install the Azure AD password protection agent on DCs. See the links below for more info
Aug 12 2019 12:51 PM
No like I said, I'm asking is this kind of functionality is available for offline networks without the possibility to have Password Protection Proxy servers beeing online with Azure.
Aug 12 2019 01:07 PM - edited Aug 12 2019 01:08 PM
No native AD functionality without Azure AD agent for password blacklisting. There are third party products that integrate with AD can provide this functionality.
Aug 12 2019 01:09 PM
Aug 12 2019 01:48 PM - edited Aug 12 2019 01:48 PM
I will still recommend Azure AD - same solution cloud and on-prem, take advantage of other Azure AD integrations
Third party - one -off solution for on-prem, requires separate licensing, high TCO, less RIO
ManageEngine AD Selfservice Plus claims do password blacklisting for on-prem AD, I have not used the tool personally though.