Re: secure storage in Active Directory
From: Michael Howard [MSFT] (mikehow_at_online.microsoft.com)
Date: 05/05/03
- Next message: Michael Howard [MSFT]: "Re: Allow users to browse"
- Previous message: Steven L Umbach: "Re: internet explorer questions"
- In reply to: megan: "secure storage in Active Directory"
- Next in thread: Joe Richards [MVP]: "Re: secure storage in Active Directory"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sun, 4 May 2003 20:28:58 -0700
by default, AD does not store user account passwords - it stores a hash of
the password.
-- Cheers, Michael Writing Securce Code 2nd Edition (http://www.microsoft.com/MSPress/books/5957.asp) This posting is provided "AS IS" with no warranties, and confers no rights. OR if you wish to include a script sample in your post please add "Use of included script samples are subject to the terms specified at http://www.microsoft.com/info/cpyright.htm" "megan" <zhongmeiyi@yahoo.com.sg> wrote in message news:57257a88.0305041854.13e0f162@posting.google.com... > Hi, > > I understand that the Active Directory stores user data and passwords. > How does it store these securely within its internal structure? > i.e. how are the passwords protected? Through hashing? PKI? > > I've read that the Active Directory database is the ntds.dit, but > I've yet to read anywhere that the passwords are stored there. I've > also read about the NTLM (mostly for backward compatibility with NT > systems), they store the password hash (either NTLM hash or NTLMv2 hash). > > Thanks in advance for any feedback. > Megan
- Next message: Michael Howard [MSFT]: "Re: Allow users to browse"
- Previous message: Steven L Umbach: "Re: internet explorer questions"
- In reply to: megan: "secure storage in Active Directory"
- Next in thread: Joe Richards [MVP]: "Re: secure storage in Active Directory"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
