Announcement

Collapse
No announcement yet.

lan manager password stored in AD db or local SAM?

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • lan manager password stored in AD db or local SAM?

    Hello,

    In an Active Directory Environment, are the domain user accounts' lan mgr password stored in AD dababase or the local computer's SAM database?

    Thanks.

  • #2
    Re: lan manager password stored in AD db or local SAM?

    I take it you are asking about the LM hash for domain accounts -- assuming LM hashes are not disabled?

    Active Directory.

    Per "Best Practice Guide for Securing Active Directory Installations and Day-to-Day Operations: Part I":

    http://www.microsoft.com/technet/pro...1/adsecp1.mspx

    By default, earlier versions of Windows operating systems support only the LAN Manager (LM) authentication protocol. To provide compatibility with these earlier versions of Windows, Active Directory stores the account passwords in an LM hash format. Active Directory stores the password for the Windows NT authentication protocol (NTLM) and NTLM version 2 (NTLMv2) protocols in NTLM hash format.
    Cheers,

    Rick

    ** Remember to give credit where credit is due and leave reputation points sigpic where appropriate **

    2006-2099 R Valstar. This post is offered "as is" for discussion purposes only with no express or implied warranty of any kind including, but not limited to, correctness or fitness for use. Nothing herein shall be construed as advice. Attempting any activity based on information in this post is done at your own risk.

    Comment

    Working...
    X