E=mc2
asked on
Check login credentials for a computer user
I would like to check the login credentials for any user, to see if it's still the same password or if it has changed,.
A script would be beneficial or a program.
A script would be beneficial or a program.
Is this for a Local Account , Active Directory , or Azure Account ?
ASKER
This is for Active Directory, on a Windows Server 2016
This tells you when a password was last set for a given user:
$date = [DateTime]( get-aduser michael.smith -prop pwdLastSet ).pwdLastSet
$date = $date.AddYears( 1600 ).ToLocalTime()
$date
ASKER
Thanks Michael, is this a script? If yes, what type is it?
Yes. That's PowerShell using the ActiveDirectory module.
Use DSInternals to pull the user hash and compare it against the previously found hash. pwdLastSet will not be accurate if someone bypasses security and use the same password
https://www.experts-exchange.com/articles/32998/Two-way-Password-Synchronization-from-one-Active-Directory-Domain-to-another-using-DSInternals.html
https://www.experts-exchange.com/articles/32998/Two-way-Password-Synchronization-from-one-Active-Directory-Domain-to-another-using-DSInternals.html
ASKER
Michael, the Powershell script does not work for me, however thank you.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I thought this worked but it does not.