Yes. Enzoic for Active Directory can be set up to block and detect passwords that contain a user’s first name, last name, email address, or Active Directory username. Enzoic will pull this information directly from the user properties within Active Directory. If "fuzzy" password matching is enabled, variants of the password using leet speak substitutions will also be blocked.
To enable these settings within the Enzoic console, see the instructions below:
- Open the Enzoic console and navigate to the Monitored Entities tab.
- Click on the policy you wish to change.
- Click on the Password Policies tab.
- Check the following boxes.
- Update the configuration.
