?
Solved

Retrieve user password from Active Directory

Posted on 2004-09-07
6
Medium Priority
?
528 Views
Last Modified: 2012-06-27
Please allow me to preface my question by stating, I am a part of the network admin team within my company.  I have the domain administrator password.  I have access to the pdc and all the users within AD.

That said, I am developing a help desk application for managing inventory, equipment, purchase orders and service tickets.  As part of the service ticket function, I have a customer info page.  When the customer calls, we launch the help desk tool which displays options for viewing outstanding work orders for the department, outstanding work orders for the caller, equipment assigned to the caller and information pertaining the the customer's domain account.  I would like to be able to extract the customer's password from active directory do display on the help desk-customer info page.

Is there a way to do this?  I can retrieve other information about the user (date created, password expiration, home directory, etc)

Again, I can pass the domain administrator password, that's not a problem.

Any help is appreciated

Regards,
Sekans
0
Comment
Question by:Sekans
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
6 Comments
 
LVL 76

Accepted Solution

by:
David Lee earned 1500 total points
ID: 12001454
To the best of my knowledge there is no way to extract the password for a user's account in AD.  You can verify or change the password from a program, but I don't believe there's any way to extract the password.  
0
 
LVL 12

Expert Comment

by:jkaios
ID: 12006361
Yub, BlueDevilFan is right!

Except you know exactly the hashing algorithm or a mysteriously hidden API that Windows uses to encrypt a password then you could do it.  But again, till now it still impossible.
0
 
LVL 1

Author Comment

by:Sekans
ID: 12560736
BlueDevilFan and jkaios,

Thank you for your input.  Unfortunately, there was no good answer to my question so I will be making a request to have this question deleted and my points refunded.

Thank you again,
Sekans
0
 
LVL 76

Expert Comment

by:David Lee
ID: 12561420
Sekans,

Requesting a refund is fine with me.  I would like to point out however that just because you don't get the answser you want, that doesn't mean the question wasn't answered.  There are some things that just aren't possible.  If there was a way to retrieve the password for an account, then there'd have been no reason for tools like L0phtcrack that use brute force to figure them out.

-- BDF
0
 
LVL 1

Author Comment

by:Sekans
ID: 12565696
BlueDevilFan,

Please forgive my ignorance.  I have since learned that 'it is not possible' is a valid answer.  As such, please accept the points and my gratitude for your efforts.

Regards,
Sekans
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Introduction While answering a recent question about filtering a custom class collection, I realized that this could be accomplished with very little code by using the ScriptControl (SC) library.  This article will introduce you to the SC library a…
Article by: Martin
Here are a few simple, working, games that you can use as-is or as the basis for your own games. Tic-Tac-Toe This is one of the simplest of all games.   The game allows for a choice of who goes first and keeps track of the number of wins for…
As developers, we are not limited to the functions provided by the VBA language. In addition, we can call the functions that are part of the Windows operating system. These functions are part of the Windows API (Application Programming Interface). U…
Get people started with the utilization of class modules. Class modules can be a powerful tool in Microsoft Access. They allow you to create self-contained objects that encapsulate functionality. They can easily hide the complexity of a process from…
Suggested Courses
Course of the Month15 days, 6 hours left to enroll

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question