Password Blacklist option for Enterprise Admins

cancel
Showing results for 
Search instead for 
Did you mean: 

Password Blacklist option for Enterprise Admins

Password Blacklist option for Enterprise Admins

Does LastPass Enterprise offer the ability to blacklist passwords?

 

This ensures that commonly exploited passwords cannot be used and gets flagged if saved within the LastPass vault.

4 Comments
gallard865
New Member

The better thing to do would be:

For enterprise type licenses, disallow the use of blacklisted passwords as the Master Password employees set on their accounts.
--and--

Warn about blacklisted password for items in the vault.

asaltl
New Member

 noelfernandez  ‎02-17-2021 09:33 AM 

 mf594  ‎02-10-2021 05:30 PM

 sincitizen99  ‎10-24-2020 06:17 AM

 

Ironically we can add a tag to these suggestions.

Why are tags needed?

Because the search bar brings up words as they appear in order in the Notes field, but tags allow for poor memory and better filtering down of what is being searched for.

I'm surprised they haven't been built into the product.

GlennD
LogMeIn Manager
Status changed to: New

Hi, as admins you can enforce certain policies that can prevent the use of easy or common passwords, or prevent the reuse of passwords.  Please review LastPass Admin Management of Master Passwords 

 

gallard865
New Member

That's all nice and dandy, but it doesn't prevent someone from using words that a business wants to deem "blacklisted".

If such as word is detected, it should be disallowed.

So there should be a mechanism that allows you to create a list of words to check against that are not allowed to use in your master password, and warn you if they're being used for passwords saved in the vault.

 

So if we say the word "Acme" is not allowed, and someone tries to make a password of "Acme123abc!!)" it would get flagged.