You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Describe the bug
When the Lockout Threshold = 10 and the Banned Password list contains ("password", "Password!", "Summer2018") the resulting compliance status shows as non-compliant when it should be compliant.
Additionally, when the list only contains those 3 examples it is compliant. Which is not expected. It should be non-compliant.
Example List1: resulted in non-compliance
password
Password!
Summer2018
Shared
Services
Canada
Cloud
Security
Posture
Management
Government
Federal
Example List2: resulted in non-compliance
Shared
Services
Canada
Cloud
Security
Posture
Management
Government
Federal
password
Password!
Summer2018
Example List3: resultsed in compliance - when it should be non-compliant. (there should be other restricted password components)
password
Password!
Summer2018
Azure CaC version
v2.1.2 in 163gccspm
To Reproduce
Steps to reproduce the behavior:
Go to MS Entra Admin Centre -> Protection -> Authentication Methods -> Password Protection in 163gccspm
View the custom banned password list
see the required banned words
See non-compliance status
Expected behavior
If the list contains all of the required banned words then it should be compliant. It should be a list greater than 3.
Screenshots
Additional Context
After running 4+ times it did appear as compliant for example List1. Is there a delay between setting config updates and the list our tool grabs the information from?
The text was updated successfully, but these errors were encountered:
Describe the bug
When the Lockout Threshold = 10 and the Banned Password list contains ("password", "Password!", "Summer2018") the resulting compliance status shows as non-compliant when it should be compliant.
Additionally, when the list only contains those 3 examples it is compliant. Which is not expected. It should be non-compliant.
Example List1: resulted in non-compliance
password
Password!
Summer2018
Shared
Services
Canada
Cloud
Security
Posture
Management
Government
Federal
Example List2: resulted in non-compliance
Shared
Services
Canada
Cloud
Security
Posture
Management
Government
Federal
password
Password!
Summer2018
Example List3: resultsed in compliance - when it should be non-compliant. (there should be other restricted password components)
password
Password!
Summer2018
Azure CaC version
v2.1.2 in 163gccspm
To Reproduce
Steps to reproduce the behavior:
Expected behavior
If the list contains all of the required banned words then it should be compliant. It should be a list greater than 3.
Screenshots
Additional Context
After running 4+ times it did appear as compliant for example List1. Is there a delay between setting config updates and the list our tool grabs the information from?
The text was updated successfully, but these errors were encountered: