Getting user password from active directory

Question

Getting user password from active directory

Can I get the account password in the active directory to which the computer is connected? I know this may sound like a dangerous thing, but I would like to start the process with the ctx admin user, without hard password encoding.

I am using .NET 3.5.

+6

c # active-directory

dotnetdev May 15, '11 at 16:42

source share

2 answers

@SLaks, you are the moderator I know, but here it is not the right answer.

There is a policy in the Active Directory that can be used to convert passowrd.

In Windows Server 2008 R2, there is something called the "Thinest Password Policy" that allows you to change the password policy for a specific group of users. In FGPP you will find the msDS-PasswordReversibleEncryptionEnabled attribute.

Be careful @dotnetdev, I DO NOT ADVISE to use this, but it exists. So this is not "fundamentally impossible."

My advice is to find out what privileges (system rights) you need for your work, and create a special group for them. Then you will create a special user and join him to this new group. After you can save the password for this user (NEVER administrative), encrypted by the administrator entity or service object.

+13

JPBlanc May 16 '11 at 3:43

source share

SLaks · Accepted Answer · 2011-05-15T16:44:49+0000

This is ~~fundamentally~~ impossible.
Windows stores passwords using the NTLM hash; passwords themselves are not saved at all.

Getting user password from active directory

More articles: