Re: fetch plain text password from active directory

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: "Lanwench [MVP - Exchange]" <lanwench@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Date: Wed, 8 Nov 2006 10:09:19 -0500

In news:1162991231.423625.63890@xxxxxxxxxxxxxxxxxxxxxxxxxxx,
deep <deepak.yadav@xxxxxxxxx> typed:

I have to fetch plain text password of users from active directory
(windows 2003). Is this possible if i can connect to it as
administrator and group password policy is "store password using
reversible encryption" is enabled (enabled before users are created..)

I have read a lot of online pages on this, and there are some
conflicting messages regarding this

e.g. The "Active Directory Cookbook" says the password is stored
in unicodePwd attribute and can never be read

MSDN, while explaining about Digest Authentication says
"The server uses the same process as the client to create a digest
using a copy of the client's password it obtains from Active
Directory, where the password is stored using reversible encryption"

Please help.

-thnx

Not sure what you mean by "plain text password" - passwords are not stored
in plain text, as you yourself have acknowleged you read. What exactly is it
you're trying to do, and why?

.

Follow-Ups:
- Re: fetch plain text password from active directory
  - From: deep

References:
- fetch plain text password from active directory
  - From: deep

Prev by Date: Server 2003 SP1, SUS 1.0 SP1, and SUSAdmin access problem
Next by Date: Re: Install Server 2003 into server 2000
Previous by thread: fetch plain text password from active directory
Next by thread: Re: fetch plain text password from active directory
Index(es):
- Date
- Thread

Relevant Pages

Re: fetch plain text password from active directory
... retrieve "abc123" from AD by using some decryption on the values store ... The "Active Directory Cookbook" says the password is stored ... where the password is stored using reversible encryption" ... Not sure what you mean by "plain text password" - passwords are not stored ...
(microsoft.public.windows.server.general)
Re: Event ID 537 Digest Authentication
... I'm not familiar enough with Digest Authentication to know exactly what's ... After enabling "store passwords using reversible encryption" for the user ... I am using a Windows 2003 SP1 server to setup a new website that will ... : domain is Windows 2000. ...
(microsoft.public.inetserver.iis.security)
Re: Help understanding "Reversible Encryption"
... conjunction with Digest Authentication. ... (also includes link to a Help file with more detailed information.) ... > "Reversible Encryption" really is. ...
(microsoft.public.windows.server.active_directory)
Re: Password Policy question
... Reversible encryption was needed for Digest authentication in IIS 5.0 where ... required for Advanced Digest in IIS 6.0. ... It is in no way related to cached credentials on workstations. ... I have some questions in "Store password using reversible encryption" ...
(microsoft.public.windows.server.active_directory)
Re: store password using reversible encryption
... this mean to say chap and digest authentication shouldnt ... be use if they have to come with "store password using ... reversible encryption until they ... >use digest authentication. ...
(microsoft.public.win2000.security)