Procedures, policies and constraints on password entry, lifetime, change, strength, and storage. An essential part of access management, together with policies on other forms of authentication.
Questions tagged [password-management]
154 questions
0
votes
1 answer
Unassigned password has expired
On a RHEL6.4 box, I have a user who hasn't been assigned a password. In the /etc/shadow file, the password is shown as !!. This is intentional; that user only logs in using public key authentication.
However, I forgot to make sure that the user's…
JW.
- 119
- 4
- 11
0
votes
1 answer
SSL Cert on a 2003 DC for password management
I am looking to implement a self help password management system, I have found this:
http://code.google.com/p/pwm/
I have a test server setup but constantly fail to get it to read AD with the test user accounts that we have in use. The only thing…
MattX
- 1
0
votes
2 answers
Group Policy for Setting Passwords: Server 2003 Domain
In my 2003 domain, I am being requested to set a password policy to require passwords to expire every 4 months, and also require users to change their password on their next login, due to a security issue. In my domain, my OU's are setup by…
Jake A
- 454
- 1
- 10
- 22
0
votes
1 answer
SSMS 2008 not remembering connection login credentials
When connecting to a server on SQL Server Management Studio 2008, I'm entering the Server Name, and using SQL Server Authentication, entering Login & Password, and ticking Remember password.
However, next time I open SSMS, the server name has been…
Curtis
- 109
- 1
- 8
0
votes
1 answer
How do Google,Yahoo and other mail services secure passwords?
How do Google,Yahoo and other top level mail services secure passwords?
What technology they are using for securing and storing passwords?
How do they manage mail passwords ?
Kumar
- 823
- 3
- 20
- 43
0
votes
1 answer
How to configure password maximum days before it expires?
I want to set Maximum days of a password can be used.
So I configure PASS_MAX_DAYS in /etc/login.defs, and PASS_WARN_AGE to warn user before the password expired. In my example, I set PASS_MAX_DAYS = 2, and PASS_WARN_AGE = 1. So the password will…
zhaojing
- 195
- 1
- 3
- 11
0
votes
1 answer
How can I set the 'password last set' date of an AD account?
In a development environment I want to modify the 'password last set' date of my AD accounts so they won't begin to expire during development phase, but as soon as the environment becomes a production environment.
How can I change that date?
stackprotector
- 445
- 1
- 3
- 20
0
votes
1 answer
Change Windows PIN requirements in Intune for an Azure AD-joined PC
I am the part-time admin of a small nonprofit, with a Microsoft 365 Business Premium subscription. I have been searching through admin.microsoft.com and portal.azure.com, but can't seem to find the settings for:
Allowing licensed Business Premium…
Conrad
- 258
- 1
- 3
- 10
0
votes
0 answers
php config - generate hashed password manually
I've created a php conf file, which include some user / password infos. For testing purposes I've added the password for the database in plain text. Since this can't be a good idea, I want to change that plain password into a hashed password.
Is…
zippy-flop
- 21
- 4
0
votes
3 answers
"Password never expires" greyed out?
I have domain users in an Azure AD DS.
I need to set some of those users with passwords that don't expire.
When I go to "Active Directory Users and Computers" on a machine in the domain, the option "Password never expires" is greyed out.
When I go…
Beakie
- 137
- 1
- 7
0
votes
0 answers
LAPS ms-Mcs-AdmPwd blank or null values
I am writing a script to export all computer LAPS ms-Mcs-AdmPwd values to KeePass to allow historical logging.
I have a few machines for whatever reason a few objects have no password set. However I am getting a value back. It is not $null or…
Keith Templin
- 1
- 1
0
votes
2 answers
How can users change their Active Directory password without Remote Desktop?
In our Active Directory setup, some users will be accessing domain resources (shared folders on the network, specifically) from non-domain computers. Only users from the domain have permission to access these shared folders, so Windows prompts the…
Keith Stein
- 173
- 1
- 2
- 15
0
votes
1 answer
Password Synchronization between two forests or in one forest; using replication or using MIM to synchronize?
So we have got a domain (e.g. contoso.local) which is replicated over 4 DCs. All DCs are in the same Subnet. All users reside in the same OU in this one domain. All Workstations are in their own OU as well.
Now we got a small (5 people) office,…
PaLin
- 5
- 3
-1
votes
1 answer
How do you stop a hacker from changing passwords in your DB directly, if they're already in a position to steal the DB?
I've been researching the methods of securely storing user passwords in a database (by only storing the hashed password, with a strong algorithm, along with a salt, and deriving the key after so many iterations, like pbkdf2). This is great for if…
papiro
- 159
- 8
-1
votes
1 answer
IT for a small organization: mailing lists, file server, hosting
I've been asked to help manage my church's information systems. We're small (~3 staff, ~150 parishioners), which puts us below the needs of a lot of the "Church Management" software I've seen.
The biggest problems right now seem to be:
No…
AndrewO
- 109
- 3