How do I update the weak password dictionary? (NETIQKB49884)

  • 7749884
  • 02-Feb-2007
  • 19-Dec-2007

Resolution

goal

How do I update the weak password dictionary?



goal
Where is the Vulnerability Manager password dictionary located?

goal
Where can I add words to check passwords against for users?

goal
Is there a password dictionary for Vulnerability Manager?

goal
How are words encrypted in the password dictionary?

fact
NetIQ Vulnerability Manager 5.5

fact
NetIQ Vulnerability Manager 5.0

fact
NetIQ Vulnerability Manager Agent for Windows 5.0

fact
NetIQ Vulnerability Manager Agent for Windows 5.5

fix

The weak password dictionary is a local file on each agent computer.  The file is named pwdencode.dic and is located at C:\Program Files\NetIQ\Vulnerability Manager Agent\bin. Words that have been added to the dictionary are encrypted when the agent runs password reports. These words are compared to the encryption hash of the passwords stored on the computer and matches are reported as "weak" passwords.

To add new weak passwords to the weak password dictionary:

  1. On the agent computer, browse to C:\Program Files\NetIQ\Vulnerability Manager Agent\bin\pwdencode.dic.
  2. Right-click the pwdencode.dic file and select Open With > Notepad.
  3. Browse to the end of the file.
  4. Enter your new weak password at the end of the list but before the special character. Do not add an encryption string after the new weak password. 
  5. Save and close the file.


note
You must manually update the password dictionary on each agent computer. You cannot currently update multiple agent password dictionaries simultaneously.

Additional Information

Formerly known as NETIQKB49884