Password Recovery on Win2k3 AD server

Posted on 2011-10-14
Medium Priority
Last Modified: 2012-05-12
I have a user off-site whose password was set when they were on-site.  However, I cannot remember the password nor can they, so is there a way to get their password out of active directory?  I did not store passwords using reverse encryption, so that is out of the question.  Are the passwords stored any place?
Question by:aclaus225
  • 2

Accepted Solution

maytrix earned 2000 total points
ID: 36970320
The passwords are not stored any place, so I'd think the only option is to have them bring it in or if they can't do that soon enough, give them the local admin login so they can login to the computer using that.  I always have this set to something we don't use anywhere else just for this purpose.

Expert Comment

ID: 36970352
You must open active directory users and computers, right click on the user, click reset password

Expert Comment

ID: 36970413
While that is true -W- for resetting the password, I believe he is asking how the user can log in to a system that is not connected to the domain without having their current password.

Short of running a tool that will attempt to decrypt the password, I am not aware of any way to do this.  

Actually, a password recovery tool run on the laptop itself may work.  There are some that will reset accounts where you provide the account name - I just don't know if this will work for a cached account since I've only used it for local accounts in the past.

Featured Post

Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Had a business requirement to store the mobile number in an environmental variable. This is just a quick article on how this was done.
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question