Language:
Weak password policies directly expose the organization to compromise by permitting easily guessable passwords, leaving critical assets vulnerable to common credential theft techniques like brute-forcing or default password.
Password policies for user accounts should enforce strong passwords with sufficient length and symbols, adapted to your requirements.
AD DS: Fine-Grained Password Policies
Configure fine grained password policies for Active Directory Domain Services
Name: Application of Weak Password Policies on Users
Codename: C-PASSWORD-POLICY
Severity: Critical
Type: Active Directory Indicator of Exposure
Family: Authentication and Credentials