Frequently Asked Questions
Below are some commonly-asked questions about KnowBe4's Weak Password Test. If you don't see the answer you need, submit a ticket to our support team.
- Can I see what my user used for their password?
- Are any log files generated during the test?
- I received an error message and my test did not run. What do I do?
- What is the WeakPasswords.txt document and where can I find it?
- Can I run this test multiple times?
- Can I run this test if I'm using Azure?
- My anti-virus flagged the Weak Password Test as dangerous. Is it?
- I had several users fail the test. What do I do now?
1. Question: Can I see what my user used for their password?
Answer: No. The passwords are hashed and cannot be displayed.
2. Question: Are any log files generated during the test?
Answer: No logs are created during this test. However, you can save your results by exporting them to an Excel or PDF file.
3. Question: I received an error message and my test did not run. What do I do?
Answer: If you received an error and could not complete the test, use the chart below to understand what the issue might be.
|The Active Directory account you are attempting to run the test with does not have Replicating Directory Changes Permissions. Please view the required Prerequisites in our manual, linked below.||The account you are using for the test does not have the proper permissions. Make sure you've created an account with Replicating Directory Changes AND Replicating Directory Changes - All Permissions. See the prerequisites listed in the Weak Password Test Product Manual.|
|Test was unable to run due to invalid user name and/or password. Please check your credentials and try the test again.||We were unable to connect to your Active Directory using the credentials you provided. Make sure your user name and password are correct and try to run the test again.|
|Server is unavailable. Please check your Domain DNS Name and try the test again.||This means your Domain DNS name is incorrect, or incorrectly formatted. Make sure you use the format of domain.com or domain.local and attempt to run the test again.|
|Server is unavailable. Please check your Domain Controller and try the test again.||This means your Domain Controller IP is incorrect, or incorrectly formatted. Double check the IP and attempt to run the test again.|
|The license validation failed.||This is likely to mean one of two things: a) either the license key you are using is invalid, or b) you are attempting to validate the license key through a proxy and it is failing as a result of that. If the error is due to a proxy, allow connections to the domain found below in your proxy settings to allow the validation of your license key to occur: https://api.wpt.knowbe4.com/v1/licenses|
4. Question: What is the Weak Passwords dictionary and where can I find it?
Answer: The Weak Passwords dictionary contains over 11 million weak and compromised passwords from past data breaches. Hackers use similar dictionaries to attempt to crack your organization's passwords.
To find the Weak Passwords dictionary, navigate to the Weak Password Test installation folder by following this path: “C:\ProgramFiles (x86)\KnowBe4\Weak Password Test”. Then, open the data.bin file to view the Weak Passwords dictionary.
5. Question: Can I run this test multiple times?
Answer: Absolutely. If you want to run the test again, click the Rerun Test button. Make sure to download an Excel or PDF file of your current results before running a new test.
6. Question: Can I run this test if I'm using Azure?
Answer: Unfortunately, this test is not compatible with Azure at this time.
7. Question: My anti-virus flagged the Weak Password Test as dangerous. Is it?
Answer: No, the Weak Password Test is not dangerous. The Weak Password Test’s behavior mimics that of a password-cracking tool used by hackers, which is why your antivirus may have flagged it as potentially dangerous.
8. Question: I had several users fail the test. What do I do now?
Answer: We recommend that you train your users on proper password practices with security awareness training. While we cannot advise you on the specifics of how to remedy all of the password vulnerabilities in your organization, KnowBe4 offers training modules about password security that you can assign to your users. These modules include Creating Strong Passwords- Security Awareness Training, How to Create Strong Passwords with Quiz, Password Security, and more. For more information about ModStore training content, see our ModStore and Library Guide article.