No. When a user password change is received by the LSA, it notifies Enzoic’s Password Filter DLL. The Enzoic Service connects via HTTPS to the Enzoic Cloud API to check a partial hash of the new password.The Backend will then compare the partial hash and return any matches for the console to compare locally. If the password is identified as compromised, it is rejected. If the password is not compromised, the password change operation is allowed to proceed.
Does Enzoic send the full password hash to the cloud for comparison? Print
Created by: Waymon Barnette
Modified on: Wed, 24 Nov, 2021 at 12:01 PM
Did you find it helpful? Yes No
Send feedbackSorry we couldn't be helpful. Help us improve this article with your feedback.