Frequently Asked Questions
Below are some commonly-asked questions about KnowBe4's Weak Password Test. If you don't see the answer you need, submit a ticket to our support team.
- Can I see what my user used for their password?
- Are any log files generated during the test?
- I received an error message and my test did not run. What do I do?
- What is the WeakPasswords.txt document and what is it used for?
- Can I run this test multiple times?
- Can I run this test if I'm using Azure?
- My anti-virus flagged the Weak Password Test as dangerous. Is it?
- I had several users fail the test. What do I do now?
- Where can I find the WeakPassword.txt dictionary?
1) Question: Can I see what my user used for their password?
Answer: No. The passwords are hashed and cannot be displayed.
2) Question: Are any log files generated during the test?
Answer: No logs are created during this test. However, you can save your results by exporting them to an Excel or PDF file.
3) Question: I received an error message and my test did not run. What do I do?
Answer: If you received an error and could not complete the test, use the chart below to understand what the issue might be.
|The Active Directory account you are attempting to run the test with does not have Replicating Directory Changes Permissions. Please view the required Prerequisites in our manual, linked below.||The account you are using for the test does not have the proper permissions. Make sure you've created an account with Replicating Directory Changes AND Replicating Directory Changes - All Permissions. See the prerequisites listed in the Weak Password Test Product Manual.|
|Test was unable to run due to invalid user name and/or password. Please check your credentials and try the test again.||We were unable to connect to your Active Directory using the credentials you provided. Make sure your user name and password are correct and try to run the test again.|
|Server is unavailable. Please check your Domain DNS Name and try the test again.||This means your Domain DNS name is incorrect, or incorrectly formatted. Make sure you use the format of domain.com or domain.local and attempt to run the test again.|
|Server is unavailable. Please check your Domain Controller and try the test again.||This means your Domain Controller IP is incorrect, or incorrectly formatted. Double check the IP and attempt to run the test again.|
|The license validation failed.||This is likely to mean one of two things: a) either the license key you are using is invalid, or b) you are attempting to validate the license key through a proxy and it is failing as a result of that. If the error is due to a proxy, allow connections to the domain found below in your proxy settings to allow the validation of your license key to occur: https://api.wpt.knowbe4.com/v1/licenses|
4) Question: What is the WeakPasswords.txt document and what is used for?
Answer: The WeakPasswords.txt document is our Weak Passwords dictionary. This dictionary contains over 11 million weak, or compromised, passwords from past data breaches. Hackers use similar dictionaries to attempt to crack your organization's passwords. This type of weak password is only one of the 10 different variations of password vulnerabilities we check for.
5) Question: Can I run this test multiple times?
Answer: Absolutely. If you want to run the test again, click the Rerun Test button. Make sure to download an Excel or PDF file of your current results before running a new test.
6) Question: Can I run this test if I'm using Azure?
Answer: Unfortunately, this test is not compatible with Azure at this time.
7) Question: My anti-virus flagged the Weak Password Test as dangerous. Is it?
Answer: No, the Weak Password Test is not dangerous. The Weak Password Test’s behavior mimics that of a password-cracking tool used by hackers, which is why your antivirus may have flagged it as potentially dangerous.
8) Question: I had several users fail the test. What do I do now?
Answer: First and foremost, train your users on proper password practices with security awareness training and remind them to change their passwords often. It is important for them to know that hackers with the right tools can crack a password within seconds. KnowBe4 offers several courses that you can train your users with that covers these topics.
For many of the vulnerabilities, you’ll also want to enforce stricter password requirements in your organization. We strongly recommend increasing your password complexity requirements and setting a rule to ensure passwords expire on a regular basis.
While we cannot advise you on the specifics of how to remedy all of the password vulnerabilities in your organization, we can point you in the direction of some great resources which can help. Check out the links below to see more tips on the best practices for password policies.
- TechNet: Configuring Password Policies
- TechNet: Best Practices for Enforcing Password Policies
- Microsoft: Password Guidance (Downloadable PDF)
9) Question: Where can I find the WeakPassword.txt dictionary?
Answer: The WeakPassword.txt dictionary can be found at the following path:
C:\ProgramData\KnowBe4\Weak Password Test\Dictionaries.
Article is closed for comments.