I am trying to write an asp .net login verification system which asks users to login with a random selection of letters from the users password.
e.g if the password was experts, they are asked to supply 1,2 6 and they would have to supply e,x and t.
I am combining it with a record of their last used i.p address and if that changes a mobile phone sms security pin confirmation.
My problem is I cannot find a way of accessing the password from active directory to construct the partial match authentication or a way to test the 3 letters against the password for partial match and this may not be possible.
My alternative is to force our users to supply a different login password for the login system or we manually set it in an accessible field.
Is there a way to achieve what I need without taking these steps?