| Author | Messages | |
breth82
Posts:3
 | | 03/25/2009 6:31 AM |
| Hi all,
I want to know where the password hashes are stored in Active Directory .Please reply asap.
--- On Mon, 3/23/09, Darren Mar-Elia <xxxxxxxxxxxxxxxx> wrote:
From: Darren Mar-Elia <xxxxxxxxxxxxxxxx>
Subject: RE: [gptalk] Backing up a GPO
To: xxxxxxxxxxxxxxxx
Date: Monday, March 23, 2009, 4:12 PM
Derek-
I haven’t tried it
explicitly, but based on other behaviors related to this, the backup likely
needs to run from either a Vista, SP1 or Server 2008 machine with GPMC
installed, since downlevel versions would not know to backup the extra data
associated with the GPP settings.
Darren
From:
xxxxxxxxxxxxxxxx [mailto:xxxxxxxxxxxxxxxx] On
Behalf Of Derek Rose
Sent: Monday, March 23, 2009 4:42 AM
To: xxxxxxxxxxxxxxxx
Subject: RE: [gptalk] Backing up a GPO
Just to close the loop on this
– when I backup the GPO as described below, does that also backup
necessary information in my GPP? I suppose that depends on where I run
the backup from, since my Vista workstation does all the edits and has the GPP
setup. Whereas our PDC does not have the necessary software to configure
GPP.
Just want to make sure I get
that backed up as well.
From: Derek Rose
[mailto:xxxxxxxxxxxxxxxx]
Sent: Friday, March 13, 2009 7:18 AM
To: 'xxxxxxxxxxxxxxxx'
Subject: RE: [gptalk] Backing up a GPO
Ah – thanks. I knew
I was looking in the wrong place!
From:
xxxxxxxxxxxxxxxx [mailto:xxxxxxxxxxxxxxxx] On
Behalf Of Andrew McHale
Sent: Friday, March 13, 2009 6:38 AM
To: xxxxxxxxxxxxxxxx
Subject: RE: [gptalk] Backing up a GPO
Hi
Derek,
I
suspect you are right clicking on the GPO link/shortcut in the associated OU
rather than the GPO object itself in the “Group Policy Objects”
container/OU.
In
your domain tree in Group Policy Management make sure you are right clicking on
the GPOs in the “Group Policy Objects” container/OU, not the domain
OU which you’ve linked the GPO to.
Hope
this helps
Andrew
From: Derek Rose
[mailto:xxxxxxxxxxxxxxxx]
Sent: 13 March 2009 10:16
To: xxxxxxxxxxxxxxxx
Subject: [gptalk] Backing up a GPO
This is probably a silly question – but I can’t
seem to figure out how to backup my GPO such as the Default Domain
Policy. Internet sources say that I should be able to right-click on the
GPO and click back up. I don’t have this option through the RSAT
tools on Vista using Group Policy Management, or using the GPMC on our
DC.
I’m sure this is just something I’m missing, and
would appreciate the help. Thanks!
| | | |
| kevingay
Posts:5
| | 03/25/2009 2:14 PM |
| If I remember correctly, AD logins are stored in the local systems SAM file, like where it’s stored for “regular” workstations. But the hashes won’t do any good as by default passwords are not stored in reversible encryption. And even if you turn on reversible encryption that only works on passwords that get reset after the setting change. All the other passwords are still one way hashes and are not crackable without a rainbow table or having a lot of patience. I’m guessing a password was changed on a service account that no one knows the original password to and everything went downhill from there.
Thanks,
Kevin
From: xxxxxxxxxxxxxxxx [mailto:xxxxxxxxxxxxxxxx] On Behalf Of Bret H
Sent: Wednesday, March 25, 2009 5:25 AM
To: xxxxxxxxxxxxxxxx
Subject: [gptalk] PAssword hashes in Active Directory
Hi all,
I want to know where the password hashes are stored in Active Directory .Please reply asap.
--- On Mon, 3/23/09, Darren Mar-Elia <xxxxxxxxxxxxxxxx> wrote:
From: Darren Mar-Elia <xxxxxxxxxxxxxxxx>
Subject: RE: [gptalk] Backing up a GPO
To: xxxxxxxxxxxxxxxx
Date: Monday, March 23, 2009, 4:12 PM
Derek-
I haven’t tried it explicitly, but based on other behaviors related to this, the backup likely needs to run from either a Vista, SP1 or Server 2008 machine with GPMC installed, since downlevel versions would not know to backup the extra data associated with the GPP settings.
Darren
From: xxxxxxxxxxxxxxxx [mailto:xxxxxxxxxxxxxxxx] On Behalf Of Derek Rose
Sent: Monday, March 23, 2009 4:42 AM
To: xxxxxxxxxxxxxxxx
Subject: RE: [gptalk] Backing up a GPO
Just to close the loop on this – when I backup the GPO as described below, does that also backup necessary information in my GPP? I suppose that depends on where I run the backup from, since my Vista workstation does all the edits and has the GPP setup. Whereas our PDC does not have the necessary software to configure GPP..
Just want to make sure I get that backed up as well..
From: Derek Rose [mailto:xxxxxxxxxxxxxxxx]
Sent: Friday, March 13, 2009 7:18 AM
To: 'xxxxxxxxxxxxxxxx'
Subject: RE: [gptalk] Backing up a GPO
Ah – thanks. I knew I was looking in the wrong place!
From: xxxxxxxxxxxxxxxx [mailto:xxxxxxxxxxxxxxxx] On Behalf Of Andrew McHale
Sent: Friday, March 13, 2009 6:38 AM
To: xxxxxxxxxxxxxxxx
Subject: RE: [gptalk] Backing up a GPO
Hi Derek,
I suspect you are right clicking on the GPO link/shortcut in the associated OU rather than the GPO object itself in the “Group Policy Objects” container/OU.
In your domain tree in Group Policy Management make sure you are right clicking on the GPOs in the “Group Policy Objects” container/OU, not the domain OU which you’ve linked the GPO to.
Hope this helps
Andrew
From: Derek Rose [mailto:xxxxxxxxxxxxxxxx]
Sent: 13 March 2009 10:16
To: xxxxxxxxxxxxxxxx
Subject: [gptalk] Backing up a GPO
This is probably a silly question – but I can’t seem to figure out how to backup my GPO such as the Default Domain Policy. Internet sources say that I should be able to right-click on the GPO and click back up. I don’t have this option through the RSAT tools on Vista using Group Policy Management, or using the GPMC on our DC.
I’m sure this is just something I’m missing, and would appreciate the help. Thanks!
| | | |
| breth82
Posts:3
| | 03/25/2009 2:35 PM |
| Thank you.This Sam file is inaccessible. Can u temme the exact folder where the password hashes are stored in Active Directory. What hashing algorithm is used generating password hashes in Windows Server 2003 Active Directory
--- On Wed, 3/25/09, Kevin Gay <xxxxxxxxxxxxxxxx> wrote:
From: Kevin Gay <xxxxxxxxxxxxxxxx>
Subject: RE: [gptalk] PAssword hashes in Active Directory
To: xxxxxxxxxxxxxxxx
Date: Wednesday, March 25, 2009, 6:07 PM
If I remember correctly, AD logins are stored in the local
systems SAM file, like where it’s stored for “regular” workstations. But the
hashes won’t do any good as by default passwords are not stored in reversible
encryption. And even if you turn on reversible encryption that only works on
passwords that get reset after the setting change. All the other passwords are
still one way hashes and are not crackable without a rainbow table or having a
lot of patience. I’m guessing a password was changed on a service account that no
one knows the original password to and everything went downhill from there.
Thanks,
Kevin
From:
xxxxxxxxxxxxxxxx [mailto:xxxxxxxxxxxxxxxx] On
Behalf Of Bret H
Sent: Wednesday, March 25, 2009 5:25 AM
To: xxxxxxxxxxxxxxxx
Subject: [gptalk] PAssword hashes in Active Directory
Hi all,
I want to know where the password hashes are stored in Active Directory
.Please reply asap.
--- On Mon, 3/23/09, Darren Mar-Elia <xxxxxxxxxxxxxxxx>
wrote:
From: Darren Mar-Elia <xxxxxxxxxxxxxxxx>
Subject: RE: [gptalk] Backing up a GPO
To: xxxxxxxxxxxxxxxx
Date: Monday, March 23, 2009, 4:12 PM
Derek-
I haven’t tried it explicitly, but based on other
behaviors related to this, the backup likely needs to run from either a
Vista, SP1 or Server 2008 machine with GPMC installed, since downlevel
versions would not know to backup the extra data associated with the GPP
settings.
Darren
From:
xxxxxxxxxxxxxxxx [mailto:xxxxxxxxxxxxxxxx] On
Behalf Of Derek Rose
Sent: Monday, March 23, 2009 4:42 AM
To: xxxxxxxxxxxxxxxx
Subject: RE: [gptalk] Backing up a GPO
Just to close the loop on this – when I backup the GPO
as described below, does that also backup necessary information in my
GPP? I suppose that depends on where I run the backup from, since my
Vista workstation does all the edits and has the GPP setup. Whereas our
PDC does not have the necessary software to configure GPP..
Just want to make sure I get that backed up as well..
From: Derek Rose
[mailto:xxxxxxxxxxxxxxxx]
Sent: Friday, March 13, 2009 7:18 AM
To: 'xxxxxxxxxxxxxxxx'
Subject: RE: [gptalk] Backing up a GPO
Ah – thanks. I knew I was looking in the wrong
place!
From: xxxxxxxxxxxxxxxx
[mailto:xxxxxxxxxxxxxxxx] On Behalf Of Andrew McHale
Sent: Friday, March 13, 2009 6:38 AM
To: xxxxxxxxxxxxxxxx
Subject: RE: [gptalk] Backing up a GPO
Hi
Derek,
I
suspect you are right clicking on the GPO link/shortcut in the associated OU
rather than the GPO object itself in the “Group Policy Objects” container/OU.
In
your domain tree in Group Policy Management make sure you are right clicking
on the GPOs in the “Group Policy Objects” container/OU, not the domain OU
which you’ve linked the GPO to.
Hope
this helps
Andrew
From: Derek Rose
[mailto:xxxxxxxxxxxxxxxx]
Sent: 13 March 2009 10:16
To: xxxxxxxxxxxxxxxx
Subject: [gptalk] Backing up a GPO
This
is probably a silly question – but I can’t seem to figure out how to backup
my GPO such as the Default Domain Policy. Internet sources say that I
should be able to right-click on the GPO and click back up. I don’t
have this option through the RSAT tools on Vista using Group Policy
Management, or using the GPMC on our DC.
I’m
sure this is just something I’m missing, and would appreciate the help.
Thanks!
| | | |
| JamieNelson
Posts:0
| | 03/25/2009 3:43 PM |
| Sorry to be the bad guy but I don’t think this is a very appropriate discussion for this list.
Jamie Nelson | Lead Analyst | BI&T Desktop Management | Devon Energy Corporation | Work: 405.552.8054 | Mobile: 405.200.8088 | http://www.dvn.com <http://www.dvn.com/>
From: xxxxxxxxxxxxxxxx [mailto:xxxxxxxxxxxxxxxx] On Behalf Of Bret H
Sent: Wednesday, March 25, 2009 1:30 PM
To: xxxxxxxxxxxxxxxx
Subject: RE: [gptalk] PAssword hashes in Active Directory
Thank you.This Sam file is inaccessible. Can u temme the exact folder where the password hashes are stored in Active Directory. What hashing algorithm is used generating password hashes in Windows Server 2003 Active Directory
--- On Wed, 3/25/09, Kevin Gay <xxxxxxxxxxxxxxxx> wrote:
From: Kevin Gay <xxxxxxxxxxxxxxxx>
Subject: RE: [gptalk] PAssword hashes in Active Directory
To: xxxxxxxxxxxxxxxx
Date: Wednesday, March 25, 2009, 6:07 PM
If I remember correctly, AD logins are stored in the local systems SAM file, like where it’s stored for “regular” workstations. But the hashes won’t do any good as by default passwords are not stored in reversible encryption. And even if you turn on reversible encryption that only works on passwords that get reset after the setting change. All the other passwords are still one way hashes and are not crackable without a rainbow table or having a lot of patience. I’m guessing a password was changed on a service account that no one knows the original password to and everything went downhill from there.
Thanks,
Kevin
From: xxxxxxxxxxxxxxxx [mailto:xxxxxxxxxxxxxxxx] On Behalf Of Bret H
Sent: Wednesday, March 25, 2009 5:25 AM
To: xxxxxxxxxxxxxxxx
Subject: [gptalk] PAssword hashes in Active Directory
Hi all,
I want to know where the password hashes are stored in Active Directory .Please reply asap.
--- On Mon, 3/23/09, Darren Mar-Elia <xxxxxxxxxxxxxxxx> wrote:
From: Darren Mar-Elia <xxxxxxxxxxxxxxxx>
Subject: RE: [gptalk] Backing up a GPO
To: xxxxxxxxxxxxxxxx
Date: Monday, March 23, 2009, 4:12 PM
Derek-
I haven’t tried it explicitly, but based on other behaviors related to this, the backup likely needs to run from either a Vista, SP1 or Server 2008 machine with GPMC installed, since downlevel versions would not know to backup the extra data associated with the GPP settings.
Darren
From: xxxxxxxxxxxxxxxx [mailto:xxxxxxxxxxxxxxxx] On Behalf Of Derek Rose
Sent: Monday, March 23, 2009 4:42 AM
To: xxxxxxxxxxxxxxxx
Subject: RE: [gptalk] Backing up a GPO
Just to close the loop on this – when I backup the GPO as described below, does that also backup necessary information in my GPP? I suppose that depends on where I run the backup from, since my Vista workstation does all the edits and has the GPP setup. Whereas our PDC does not have the necessary software to configure GPP..
Just want to make sure I get that backed up as well..
From: Derek Rose [mailto:xxxxxxxxxxxxxxxx]
Sent: Friday, March 13, 2009 7:18 AM
To: 'xxxxxxxxxxxxxxxx'
Subject: RE: [gptalk] Backing up a GPO
Ah – thanks. I knew I was looking in the wrong place!
From: xxxxxxxxxxxxxxxx [mailto:xxxxxxxxxxxxxxxx] On Behalf Of Andrew McHale
Sent: Friday, March 13, 2009 6:38 AM
To: xxxxxxxxxxxxxxxx
Subject: RE: [gptalk] Backing up a GPO
Hi Derek,
I suspect you are right clicking on the GPO link/shortcut in the associated OU rather than the GPO object itself in the “Group Policy Objects” container/OU.
In your domain tree in Group Policy Management make sure you are right clicking on the GPOs in the “Group Policy Objects” container/OU, not the domain OU which you’ve linked the GPO to.
Hope this helps
Andrew
From: Derek Rose [mailto:xxxxxxxxxxxxxxxx]
Sent: 13 March 2009 10:16
To: xxxxxxxxxxxxxxxx
Subject: [gptalk] Backing up a GPO
This is probably a silly question – but I can’t seem to figure out how to backup my GPO such as the Default Domain Policy. Internet sources say that I should be able to right-click on the GPO and click back up. I don’t have this option through the RSAT tools on Vista using Group Policy Management, or using the GPMC on our DC.
I’m sure this is just something I’m missing, and would appreciate the help. Thanks!
Confidentiality Warning: This message and any attachments are intended only for the use of the intended recipient(s), are confidential, and may be privileged.
If you are not the intended recipient, you are hereby notified that any review, retransmission, conversion to hard copy, copying, circulation or other use of all or any portion of this message and any attachments is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail, and delete this message and any attachments from your system.
| | | |
| Darren
Posts:103
| | 03/25/2009 3:45 PM |
| While this topic is interesting, its not really related to GP and its also getting into some areas of AD that I would view as proprietary to MS. One thing you may want to do Bret, is go to MS’ website and search on the AD Protocol documents. These are where MS documents any of their protocols that are publicly accessible.
Thanks,
Darren
From: xxxxxxxxxxxxxxxx [mailto:xxxxxxxxxxxxxxxx] On Behalf Of Bret H
Sent: Wednesday, March 25, 2009 11:30 AM
To: xxxxxxxxxxxxxxxx
Subject: RE: [gptalk] PAssword hashes in Active Directory
Thank you.This Sam file is inaccessible. Can u temme the exact folder where the password hashes are stored in Active Directory. What hashing algorithm is used generating password hashes in Windows Server 2003 Active Directory
--- On Wed, 3/25/09, Kevin Gay <xxxxxxxxxxxxxxxx> wrote:
From: Kevin Gay <xxxxxxxxxxxxxxxx>
Subject: RE: [gptalk] PAssword hashes in Active Directory
To: xxxxxxxxxxxxxxxx
Date: Wednesday, March 25, 2009, 6:07 PM
If I remember correctly, AD logins are stored in the local systems SAM file, like where it’s stored for “regular” workstations. But the hashes won’t do any good as by default passwords are not stored in reversible encryption. And even if you turn on reversible encryption that only works on passwords that get reset after the setting change. All the other passwords are still one way hashes and are not crackable without a rainbow table or having a lot of patience. I’m guessing a password was changed on a service account that no one knows the original password to and everything went downhill from there.
Thanks,
Kevin
From: xxxxxxxxxxxxxxxx [mailto:xxxxxxxxxxxxxxxx] On Behalf Of Bret H
Sent: Wednesday, March 25, 2009 5:25 AM
To: xxxxxxxxxxxxxxxx
Subject: [gptalk] PAssword hashes in Active Directory
Hi all,
I want to know where the password hashes are stored in Active Directory .Please reply asap.
--- On Mon, 3/23/09, Darren Mar-Elia <xxxxxxxxxxxxxxxx> wrote:
From: Darren Mar-Elia <xxxxxxxxxxxxxxxx>
Subject: RE: [gptalk] Backing up a GPO
To: xxxxxxxxxxxxxxxx
Date: Monday, March 23, 2009, 4:12 PM
Derek-
I haven’t tried it explicitly, but based on other behaviors related to this, the backup likely needs to run from either a Vista, SP1 or Server 2008 machine with GPMC installed, since downlevel versions would not know to backup the extra data associated with the GPP settings.
Darren
From: xxxxxxxxxxxxxxxx [mailto:xxxxxxxxxxxxxxxx] On Behalf Of Derek Rose
Sent: Monday, March 23, 2009 4:42 AM
To: xxxxxxxxxxxxxxxx
Subject: RE: [gptalk] Backing up a GPO
Just to close the loop on this – when I backup the GPO as described below, does that also backup necessary information in my GPP? I suppose that depends on where I run the backup from, since my Vista workstation does all the edits and has the GPP setup. Whereas our PDC does not have the necessary software to configure GPP..
Just want to make sure I get that backed up as well..
From: Derek Rose [mailto:xxxxxxxxxxxxxxxx]
Sent: Friday, March 13, 2009 7:18 AM
To: 'xxxxxxxxxxxxxxxx'
Subject: RE: [gptalk] Backing up a GPO
Ah – thanks. I knew I was looking in the wrong place!
From: xxxxxxxxxxxxxxxx [mailto:xxxxxxxxxxxxxxxx] On Behalf Of Andrew McHale
Sent: Friday, March 13, 2009 6:38 AM
To: xxxxxxxxxxxxxxxx
Subject: RE: [gptalk] Backing up a GPO
Hi Derek,
I suspect you are right clicking on the GPO link/shortcut in the associated OU rather than the GPO object itself in the “Group Policy Objects” container/OU.
In your domain tree in Group Policy Management make sure you are right clicking on the GPOs in the “Group Policy Objects” container/OU, not the domain OU which you’ve linked the GPO to.
Hope this helps
Andrew
From: Derek Rose [mailto:xxxxxxxxxxxxxxxx]
Sent: 13 March 2009 10:16
To: xxxxxxxxxxxxxxxx
Subject: [gptalk] Backing up a GPO
This is probably a silly question – but I can’t seem to figure out how to backup my GPO such as the Default Domain Policy. Internet sources say that I should be able to right-click on the GPO and click back up. I don’t have this option through the RSAT tools on Vista using Group Policy Management, or using the GPMC on our DC.
I’m sure this is just something I’m missing, and would appreciate the help. Thanks!
| | | |
|
|