Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Are passwords encrypted in transit

Posted on 2014-01-17
9
Medium Priority
?
1,034 Views
Last Modified: 2014-03-05
For audit purposes, I need to report that policy has set "Passwords Encrypted in Transit" on over 5000 Windows servers. Operating systems range from Windows 2003 through 2012. I have been unable to find a registy setting that corresponds to this policy setting. Any ideas?
0
Comment
Question by:ServerTec
  • 4
  • 2
  • 2
  • +1
9 Comments
 
LVL 14

Expert Comment

by:Alex Green
ID: 39788934
They are encrypted using Kerberos encryption if I remember correctly
0
 

Author Comment

by:ServerTec
ID: 39789231
I don't need to know how it's done, I need to know how to report that it's been done.
0
 
LVL 84

Expert Comment

by:David Johnson, CD, MVP
ID: 39789823
It is a function of the operating system (kerberos)
0
Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

 
LVL 14

Expert Comment

by:Alex Green
ID: 39790172
It's in as default IIRC
0
 
LVL 44

Expert Comment

by:Darr247
ID: 39792379
See if the Kerberos status show up in the HTML file generated by the command
gpresult /F /H GPreport.htm

Open in new window

That file should be made in your user folder if that's run from the standard CMD window.

If so, a FOR/DO batch should be possible that uses a list of all the servers as the input.
0
 

Author Comment

by:ServerTec
ID: 39801004
ERROR: Invalid argument/option - '/F'

The /H argument also appears to be invalid. Is the intention to write the results of gpresult to a file?
0
 
LVL 44

Expert Comment

by:Darr247
ID: 39801740
Interesting... do ANY of the parameters listed in
http://technet.microsoft.com/en-us/library/cc733160.aspx
work for you?
0
 

Accepted Solution

by:
ServerTec earned 0 total points
ID: 39895425
It turns out that the auditors really wanted to know the setting of "passwords are stored useing reversible encryption" in policy. Thanks to all for their efforts in addressing my question.
0
 

Author Closing Comment

by:ServerTec
ID: 39905878
It turns out that the auditors really wanted to know the setting of "passwords are stored useing reversible encryption" in policy. Thanks to all for their efforts in addressing my question.
0

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

By default Outlook 2016 displays only one time zone in the Calendar. The following article explains how to display two time zones in one calendar view.
Unable to change the program that handles the scan event from a network attached Canon/Brother printer/scanner. This means you'll always have to choose which program handles this action, e.g. ControlCenter4 (in the case of a Brother).
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
How to fix incompatible JVM issue while installing Eclipse While installing Eclipse in windows, got one error like above and unable to proceed with the installation. This video describes how to successfully install Eclipse. How to solve incompa…

963 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question