@realn2s@infosec.exchange i’m curious how you would force a change but also allow access to this tool on the company device

at least for a windows domain you have to do all of this on the lock screen..?

A bit more details

Imagine you identified users who have a weak password, reused their password, or use a password from known breaches.

I would like to notify them that they need to change their password and at the same time increase that chance that they pick a good password when they are asked (or forced) to change their password.

As the password is for their central account a password safe is of limited use 😬
As they can't access their company system without the password, they would need a password safe on another (non-company) device

#cybersecurity #fedipower

@realn2s if one is taking the time to install a password generator, they could take the opportunity to introduce a password manager like https://keepassxc.org (as per the requirements you asked). It might be challenging to remember randomly generated passwords.