Solved

Are passwords encrypted in transit

Posted on 2014-01-17
9
657 Views
Last Modified: 2014-03-05
For audit purposes, I need to report that policy has set "Passwords Encrypted in Transit" on over 5000 Windows servers. Operating systems range from Windows 2003 through 2012. I have been unable to find a registy setting that corresponds to this policy setting. Any ideas?
0
Comment
Question by:ServerTec
  • 4
  • 2
  • 2
  • +1
9 Comments
 
LVL 6

Expert Comment

by:alexgreen312
Comment Utility
They are encrypted using Kerberos encryption if I remember correctly
0
 

Author Comment

by:ServerTec
Comment Utility
I don't need to know how it's done, I need to know how to report that it's been done.
0
 
LVL 78

Expert Comment

by:David Johnson, CD, MVP
Comment Utility
It is a function of the operating system (kerberos)
0
 
LVL 6

Expert Comment

by:alexgreen312
Comment Utility
It's in as default IIRC
0
Too many email signature updates to deal with?

Do you feel like you are taking up all of your time constantly visiting users’ desks to make changes to email signatures? Wish you could manage all signatures from one central location, easily design them and deploy them quickly to users? Well, there is an easy way!

 
LVL 44

Expert Comment

by:Darr247
Comment Utility
See if the Kerberos status show up in the HTML file generated by the command
gpresult /F /H GPreport.htm

Open in new window

That file should be made in your user folder if that's run from the standard CMD window.

If so, a FOR/DO batch should be possible that uses a list of all the servers as the input.
0
 

Author Comment

by:ServerTec
Comment Utility
ERROR: Invalid argument/option - '/F'

The /H argument also appears to be invalid. Is the intention to write the results of gpresult to a file?
0
 
LVL 44

Expert Comment

by:Darr247
Comment Utility
Interesting... do ANY of the parameters listed in
http://technet.microsoft.com/en-us/library/cc733160.aspx
work for you?
0
 

Accepted Solution

by:
ServerTec earned 0 total points
Comment Utility
It turns out that the auditors really wanted to know the setting of "passwords are stored useing reversible encryption" in policy. Thanks to all for their efforts in addressing my question.
0
 

Author Closing Comment

by:ServerTec
Comment Utility
It turns out that the auditors really wanted to know the setting of "passwords are stored useing reversible encryption" in policy. Thanks to all for their efforts in addressing my question.
0

Featured Post

How does your email signature look on mobiles?

Do your employees use mobile devices to reply to emails? With mobile becoming increasingly important to the business world, it is in your best interest to make sure that your email signature looks great across all types of devices.

Join & Write a Comment

The use of stolen credentials is a hot commodity this year allowing threat actors to move laterally within the network in order to avoid breach detection.
Our Group Policy work started with Small Business Server in 2000. Microsoft gave us an excellent OU and GPO model in subsequent SBS editions that utilized WMI filters, OU linking, and VBS scripts. These are some of experiences plus our spending a lo…
This Micro Tutorial will give you a basic overview of Windows DVD Burner through its features and interface. This will be demonstrated using Windows 7 operating system.
The Task Scheduler is a powerful tool that is built into Windows. It allows you to schedule tasks (actions) on a recurring basis, such as hourly, daily, weekly, monthly, at log on, at startup, on idle, etc. This video Micro Tutorial is a brief intro…

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now