windows 合法管理员如何在 ActiveDirectory 中获取用户密码?
声明:本页面是StackOverFlow热门问题的中英对照翻译,遵循CC BY-SA 4.0协议,如果您需要使用它,必须同样遵循CC BY-SA许可,注明原文地址和作者信息,同时你必须将它归于原作者(不是我):StackOverFlow
原文地址: http://stackoverflow.com/questions/3727181/
Warning: these are provided under cc-by-sa 4.0 license. You are free to use/share it, But you must attribute it to the original authors (not me):
StackOverFlow
How does a legitmate administrator get a user's password in ActiveDirectory?
提问by goodguys_activate
采纳答案by Michael Grafnetter
Although Dirk's answer is correct, the RevDump tool only works on Windows Server 2003, as newer versions of Windows store the reversibly encrypted passwords in a different way. Therefore I have created a new toolthat supports Windows Server 2008+.
尽管 Dirk 的回答是正确的,但 RevDump 工具仅适用于 Windows Server 2003,因为较新版本的 Windows 以不同的方式存储可逆加密的密码。因此我创建了一个支持 Windows Server 2008+的新工具。
Simplest usage example:
最简单的用法示例:
Get-ADReplAccount -SamAccountName April -Domain Adatum -Server LON-DC1
Sample output (partial):
示例输出(部分):
DistinguishedName: CN=April Reagan,OU=IT,DC=Adatum,DC=com
Sid: S-1-5-21-3180365339-800773672-3767752645-1375
SamAccountName: April
SamAccountType: User
NTHash: 92937945b518814341de3f726500d4ff
SupplementalCredentials:
ClearText: Pa$$w0rd
回答by Dirk Vollmar
The following series of blog posts explains some details:
以下系列博文解释了一些细节:
Passwords stored using reversible encryption: how it works (part 1)
Passwords stored using reversible encryption: how it works (part 2)
The author of this blog, Niels Teusink, also made the source code of his tool RevDumpavailable for download.
该博客的作者 Niels Teusink 还提供了他的工具RevDump的源代码可供下载。
It goes without saying that reversible encryption should not be used globally and only in very exceptional cases.
不言而喻,可逆加密不应该在全球范围内使用,并且只能在非常特殊的情况下使用。
