nFront Password Filter is a password policy enforcement tool for Windows Active Directory that allows up to 6 different password policies in the same Windows domain. Each password policy has many granular settings and can be associated with one or more global or universal security groups. nFront Password Filter allows you to strengthen network security by preventing the use of weak, easily hacked passwords.
Feature
-Protects from external hacking.IPSec is great. VPNs are great. 128-bit encryption is great. However, the correct username and password allows a Hacker to use the 128-bit IPSec VPN tunnel and access your corporate data. All of your firewall devices and IDS devices have no way of distinguishing the compromised account from the actual legitimate user.
-Protects from internal hacking. How about the new engineer who would like to access to Company financial data? How about the college student who would like the modify the student records database? How about all the free password sniffing and cracking tools on the Internet?
-Disallowing weak passwords is part of the SANS/FBI Top 20 List
-Users do not understand the need for strong passwords and will not follow formal password policies unless the policies are enforced.