Welcome to WiseSoft.co.uk!
Register
About
Contact
Donate
Home
Scripts
Articles
Software
Forum
Links
Active Directory Schema Guide
Submit a Script
All Scripts
Active Directory
Computer
Database
Event Logs
Exchange/Email
File System
General
Printer
SQL Server
Account Page
Address Page
COMPlus Page
DialIn Page
Environment Page
General Page
MemberOf Page
Organization Page
Profile Page
RemoteControl Page
Sessions Page
Telephones Page
TerminalServices Page
Batch File
HTA
KiXtart
PowerShell
T-SQL
VB
VBScript
Computer Accounts
Domains, Forests & Trusts
Groups
Monitoring & Replication
Organizational Units
Schema Information
Search
Sites and Subnets
User Accounts
PowerShell
VBScript
VBScript
PowerShell
VBScript
VBScript
VBScript
VBScript
VBScript
PowerShell
VBScript
VBScript
PowerShell
VBScript
HTA
KiXtart
PowerShell
VB
VBScript
VBScript
KiXtart
PowerShell
VBScript
PowerShell
VBScript
Batch File
KiXtart
PowerShell
VBScript
HTA
VB
VBScript
HTA
KiXtart
PowerShell
VBScript
HTA
PowerShell
T-SQL
VBScript
All Articles
Active Directory
Miscellaneous
Programming
Scripting
Security
SQL Server
WiseSoft
Submit Article
All Software
TSQL DDL Code History Tool
Account Management Spreadsheet
Bulk AD Users
Password Control
Script Builder
NTFSFix
TSQL DDL Code History Tool
Bulk AD Users
Password Control
Script Builder
Account Management Spreadsheet
NTFSFix
Scripting
Guestbook
Bugs
Suggestions
General
Bugs
Suggestions
General
Bugs
Suggestions
General
Bugs
Suggestions
General
Bugs
Suggestions
General
Bugs
Suggestions
General
Login
User Name:
Password:
Remember me next time
Forgot Password?
Login using OpenID:
Create free account
Exclusive access for registered users
Registered Users:
20870
Click here to find out how you can help support wisesoft.co.uk!
home
recent topics
recent posts
search
faq
AspNetForum v.5.2.7.0
WiseSoft :: Forum
:: Forum
user:
psw:
remember me
|
lost password
|
register
Home
»
Bulk AD Users
»
Query to check for password
|
11/23/2010 9:11:35 AM
permalink
ghasz
Posts 1
Hi all,
Does anyone know of a query that will check for a specific password. For instance run a query to check for the password "password1234".
Or that can check for passwords that were changed on a certain day
12/2/2010 12:30:49 PM
permalink
admin
Posts 331
There wouldn't be an easy way to check for users with a password "password1234". The password is encrypted and Microsoft don't expose the password via any interface even in it's encrypted form. The only way to do it would be to try to authenticate as each user with that password and log if the attempt fails or succeeds. You couldn't really use this to check against a set of common passwords as you are likely to lock users out of the system. Also, I'm not 100% sure that you wouldn't hit any security issues with this - it might look like a hacker trying to find access to the system. A better option would to to enable password complexity requirements.
You can get the last time a password was changed via the
pwdlastset
attribute. The only problem is that this attribute can be difficult to deal with as it's stored as a large integer. Something like this should work:
(&(objectClass=person)(objectClass=User)(pwdLastSet>=?)(pwdLastSet<=?))
You would need to input the date range as a large integer though. This online tool might be useful:
http://www.silisoftware.com/tools/date.php
It's the filetime one that you would be interested in.
Hope this helps,
David
pages:
1
|
Home
»
Bulk AD Users
»
Query to check for password