RE: User Password History
From: Chris Rolon (ChrisRolon_at_discussions.microsoft.com)
Date: 01/23/05
- Previous message: Chris Rolon: "Re: User Password set"
- In reply to: Denis Galiana: "RE: User Password History"
- Next in thread: Rhett Gong [MSFT]: "RE: User Password History"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sun, 23 Jan 2005 06:57:02 -0800
What behavior of the DPAPI is it that you are trying to duplicate? The nature
of the DPAPI is that you do not have to manage a symmetric key since it is
generated for you--either a machine key or user.
Maybe you should consider just using the Crypto API...
Chris Rolon
"Denis Galiana" wrote:
> Hi Rhett,
>
> I would like to do the same things that DPAPI does, but I found a drawback :
> DPAPI uses a file stored in the user profile, so if i want to support user
> mobility, I must require roaming profile, and some customer do not want to
> setup roaming profiles.
>
> "Rhett Gong [MSFT]" wrote:
>
> > Hi Denis,
> > I agree with the answer from Laszlo Elteto, and you may check MasterKey
> > section for more information on the password hash.
> >
> > Could I ask you why you want to get the old password? If you forget your
> > password and you are in a domain scenario and you can call the admin to
> > reset your password by using admin tool or IAdsUser::SetPassword AD
> > methods. If you are in a single computer scenario, then there is no way to
> > get it.
> >
> >
> > Thanks,
> > Rhett Gong [MSFT]
> > Microsoft Online Partner Support
> > Get Secure! - www.microsoft.com/security
> >
> > This posting is provided "AS IS" with no warranties and confers no rights.
> >
> >
- Previous message: Chris Rolon: "Re: User Password set"
- In reply to: Denis Galiana: "RE: User Password History"
- Next in thread: Rhett Gong [MSFT]: "RE: User Password History"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
