Network Security: Detailed info on Active Directory password external use

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Focus-Microsoft

[Top] [All Lists]

Active Directory password external use

from [Rodrigo Blanco] Network Security

[Permanent Link]

Subject:	Active Directory password external use
Date:	Wed, 31 Aug 2005 08:27:11 +0200

Hello list,

I am currently doing a project that requires using the Active
Directory users' password for other purposes other than just
workstation logon or share access.

What I would need to do is detect password change / reset events on
the domain, capture the new password and send it to another
application. This could be done with an agent or daemon running on the
DC machine.

The question is, when a users' password is changed / resetted, is it
possible to externally capture this event and make use of the password
before it is stored in a non-reversible format inside the active dir.?

What security implications would this have, and what security measures
would you propose for such an agent?

Thanks in advance for your help and best regards,
Rodrigo.

---------------------------------------------------------------------------
---------------------------------------------------------------------------

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Active Directory password external use, Rodrigo Blanco <= RE: Active Directory password external use, Doug Brower RE: Active Directory password external use, Fredericks, Michael Re: Active Directory password external use, Matthew Farrenkopf Re: Active Directory password external use, Manuel Fernandes RE: Active Directory password external use, Kurt Dillard

Previous by Date:	Re: RE: IEEE 802.1x & dynamic vlan assignment, linux . yahoo
Next by Date:	Group Policy: multiple password policies in the same domain?, Derick Anderson
Previous by Thread:	SecurityFocus Microsoft Newsletter #253, Marc Fossi
Next by Thread:	RE: Active Directory password external use, Doug Brower
Indexes:	[Date] [Thread] [Top] [All Lists]