Security
Enzoic for Active Directory uses a partial hash comparison approach through Enzoic’s Password API. This allows you to check whether a given password is know...
Mon, 30 Jan, 2023 at 3:52 PM
No. Customer data is not stored by Enzoic. The partial hash sent to the Enzoic server is kept in memory only long enough to perform the database lookup and ...
Fri, 11 Jun, 2021 at 6:24 PM
No customer data is stored by Enzoic. The partial hash sent to the Enzoic server is kept in memory only long enough to perform the database lookup and then ...
Wed, 24 Nov, 2021 at 12:12 PM
No. When a user password change is received by the LSA, it notifies Enzoic’s Password Filter DLL. The Enzoic Service connects via HTTPS to the Enzoic Cloud ...
Wed, 24 Nov, 2021 at 12:01 PM
One of the questions we get quite often is: "When going through the Settings -> Other Settings, we see a check box for 'Ensure NIST 800-63b Comp...
Fri, 19 Jan, 2024 at 1:33 PM
Here are some of the measures we implement at Enzoic to support our commitment to secure services: Our cloud infrastructure is hosted on Amazon Web Serv...
Tue, 22 Oct, 2024 at 5:05 PM
No. Only the first 10 characters of the password hash are sent to the Cloud over an HTTPs connection. We do this so even if you are hit with a man in the m...
Wed, 24 Nov, 2021 at 12:06 PM
Yes. The call is sent over HTTPs and is encrypted by SSL.
Wed, 24 Nov, 2021 at 12:08 PM
We have the full password cached locally on the AD server as an encrypted hash. We are only sending the first 10 characters of the hash to the cloud. It is ...
Mon, 18 Dec, 2023 at 11:53 AM
No. Enzoic does not allow our backend to be queried, and we do not make compromised hashes available on DC's to be viewed.
Thu, 25 Aug, 2022 at 9:50 AM