Identify users with never expiring password (web client)

A primary security mandate within any organization is to require all users to change their passwords regularly to prevent unauthorized access to your organizational resources. ARM scans your domain for user accounts this requirement is not activated. You can view this information in the ARM reports for users and groups.

Use the scenario in this procedure to locate accounts where this requirement is not activated. You can view this information in the web interface and create reports.

1. Log in to the ARM web client.

2. In the toolbar, click Analyze > Risk assessment dashboard.

   The Risk Assessment dashboard displays on your screen. All tiles in the dashboard are sorted by risk level.

   

3. Locate the tile entitled Accounts with never expiring password.

   

   The tile displays a rating for this risk factor.

   All tiles on the dashboard are sorted by risk level

4. Click Minimize Risks.

   The Accounts With Never Expiring Password screen is displayed.

   

   The dashboard title displays at the top of the screen (1). Use sorting, filtering and grouping to analyze the data (2). Select the rows to display in the grid and in the reports (3). Click Direct Excel export to export the data in a Microsoft Excel file (4). Click Create Report to create a report in PDF or CSV format (5).

See the following sections for more information:

• Reset passwords (rich client)

• Change password options (rich client)