List of banned words

Question

List of banned words

fmoyay opened this issue a year ago · 5 comments

Hello,

I would like to know how can we get a list of banned words added in the store? We want to check the list to remove or add new words.

Another question: if the list of banned words is empty in the store wouldn't any restriction apply when a user changes his password?

Thank you

Answer 1 · 2023-03-16T10:17:36.000Z

The words are hashed in the store so you can't obtain a list. You can use the Test-IsBannedWord cmdlet to validate if a specific word is in the store.

If there are no banned words in the store then the password will never be rejected based on that condition.

Answer 2 · 2023-03-16T12:35:18.000Z

Hello again,

Ok, I have a test environment and I'd like to know what words we've added, but if that's not possible, the simplest option is to create a new store and start over.

Thank you very much Ryan!!

Answer 3 · 2023-03-17T07:42:19.000Z

What if we don't install the application on all domain controllers? Wouldn't the forbidden word apply to users logging in against that DC?

Thank you once more.

Answer 4 · 2023-03-17T07:50:37.000Z

Any writable DC in the domain could potentially process a password change. You'd end up with inconsistent application of policy when a user password change request ends up being processed on a DC without LPP installed.

To be effective it must be installed on all DCs

Answer 5 · 2023-03-17T08:23:45.000Z

Ok

Thank you very much for your help!!