Password Recovery on Win2k3 AD server

Posted on 2011-10-14
Last Modified: 2012-05-12
I have a user off-site whose password was set when they were on-site.  However, I cannot remember the password nor can they, so is there a way to get their password out of active directory?  I did not store passwords using reverse encryption, so that is out of the question.  Are the passwords stored any place?
Question by:aclaus225
    LVL 8

    Accepted Solution

    The passwords are not stored any place, so I'd think the only option is to have them bring it in or if they can't do that soon enough, give them the local admin login so they can login to the computer using that.  I always have this set to something we don't use anywhere else just for this purpose.
    LVL 3

    Expert Comment

    You must open active directory users and computers, right click on the user, click reset password
    LVL 8

    Expert Comment

    While that is true -W- for resetting the password, I believe he is asking how the user can log in to a system that is not connected to the domain without having their current password.

    Short of running a tool that will attempt to decrypt the password, I am not aware of any way to do this.  

    Actually, a password recovery tool run on the laptop itself may work.  There are some that will reset accounts where you provide the account name - I just don't know if this will work for a cached account since I've only used it for local accounts in the past.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    IT, Stop Being Called Into Every Meeting

    Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

    Installing a printer using group policy preferences is not that hard let’s take a look at it. First lets open up your group policy console and edit the policy you want to add it to. I recommend creating a new policy for each printer makes it a l…
    A quick step-by-step overview of installing and configuring Carbonite Server Backup.
    This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
    This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…

    737 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    19 Experts available now in Live!

    Get 1:1 Help Now