Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Check for password policy #604

LowlyDBA opened this Issue Feb 21, 2019 · 0 comments


None yet
1 participant
Copy link

LowlyDBA commented Feb 21, 2019

Feature Request

Validate that SQL logins have password policy enabled.

New Check

What would you like to check?

The password policy facet of each SQL Login.

What should be able to be excluded from being tested ?

Windows Auth logins

Additional information

I've been using the following as a custom check thus far:

@(Get-DbaLogin -SqlInstance $psitem -SQLLogins).ForEach{
    It "$($_.Name) should have password policy enabled on $($psitem.SqlInstance)" {
        $_.PasswordPolicyEnforced | Should -Be $true -Because "all logins must be secure"
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.
You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session.