+ Post New Thread
Results 1 to 13 of 13
Windows Server 2000/2003 Thread, Getting User passwords in Technical; To be able to setup new cloud email accounts for our staff I need their usernames and passwords in a ...
  1. #1
    zag
    zag is offline
    zag's Avatar
    Join Date
    Mar 2007
    Posts
    3,765
    Thank Post
    898
    Thanked 417 Times in 350 Posts
    Blog Entries
    12
    Rep Power
    87

    Getting User passwords

    To be able to setup new cloud email accounts for our staff I need their usernames and passwords in a CSV.

    Is there any way as an administrator I can do that easily? I can get the usernames from Active directory but the passwords don't seem to show.

    I could request them all to send their passwords over email but that seems a little insecure to me
    Last edited by zag; 20th January 2011 at 02:08 PM.

  2. #2

    Hightower's Avatar
    Join Date
    Jun 2008
    Location
    Cloud 9
    Posts
    4,920
    Thank Post
    494
    Thanked 690 Times in 444 Posts
    Rep Power
    241
    Why can't you just set them up with a random password? Trying to hack their passwords doesn't sound too clever in my opinion, and could land you in a whole heap of trouble.

    I wouldn't even ask a member of staff for their passwords - a password is a personal thing. I'd be pretty miffed if I found out someone hacked my password out of the system.

  3. #3
    tonyd's Avatar
    Join Date
    Mar 2006
    Location
    Kent (Sometimes), UK
    Posts
    163
    Thank Post
    17
    Thanked 42 Times in 31 Posts
    Rep Power
    25
    Even on the Windows server, the password itself is not stored, but a hash representing it. These hashes may be copied and then cracking tools run against them, but I think this will only work if they are simple password with no complexity. So, I beleive that what you're asking for cannot be done.

  4. #4
    zag
    zag is offline
    zag's Avatar
    Join Date
    Mar 2007
    Posts
    3,765
    Thank Post
    898
    Thanked 417 Times in 350 Posts
    Blog Entries
    12
    Rep Power
    87
    Quote Originally Posted by Hightower View Post
    Why can't you just set them up with a random password? Trying to hack their passwords doesn't sound too clever in my opinion, and could land you in a whole heap of trouble.

    I wouldn't even ask a member of staff for their passwords - a password is a personal thing. I'd be pretty miffed if I found out someone hacked my password out of the system.
    I want them to have single sign on so need their passwords to match their network passwords.

  5. #5
    wesleyw's Avatar
    Join Date
    Dec 2005
    Location
    Kingswinford
    Posts
    2,207
    Thank Post
    225
    Thanked 50 Times in 44 Posts
    Blog Entries
    1
    Rep Power
    30
    Especially if it has none reversible encryption setup up.

  6. #6
    soveryapt's Avatar
    Join Date
    Jan 2009
    Location
    Lancashire
    Posts
    2,402
    Thank Post
    648
    Thanked 277 Times in 244 Posts
    Rep Power
    78
    Easiest way, set it up but warn the staff their passwords will be reset. Give them new passwords so that they can login, then set them to force change once you're sorted and got it syncronised which, I'm guessing, will then update the password for the cloud?

  7. #7
    tonyd's Avatar
    Join Date
    Mar 2006
    Location
    Kent (Sometimes), UK
    Posts
    163
    Thank Post
    17
    Thanked 42 Times in 31 Posts
    Rep Power
    25
    Single sign on involves having a single place that all the authentication request use. Any other system, as implied above, would require some sort of synchronisation of accounts, allowing for when users change passwords. Also, as the name suggests, single sign on means only having to login once to access multiple services.

  8. #8

    teejay's Avatar
    Join Date
    Apr 2008
    Posts
    3,176
    Thank Post
    284
    Thanked 773 Times in 583 Posts
    Rep Power
    335
    Which cloud based email system are you using, stuff like live@edu and google mail have utilities to do the single sign-on.

  9. #9

    Hightower's Avatar
    Join Date
    Jun 2008
    Location
    Cloud 9
    Posts
    4,920
    Thank Post
    494
    Thanked 690 Times in 444 Posts
    Rep Power
    241
    Quote Originally Posted by zag View Post
    I want them to have single sign on so need their passwords to match their network passwords.
    Yeah, as tonyd has said, that doesn't sound like SSO to me. I've set many systems up for 'proper' SSO and none of them required me to know my staffs passwords.

  10. #10
    jamesbmarshall's Avatar
    Join Date
    Feb 2010
    Location
    Reading, UK
    Posts
    524
    Thank Post
    26
    Thanked 229 Times in 159 Posts
    Rep Power
    86
    Quote Originally Posted by zag View Post
    To be able to setup new cloud email accounts for our staff I need their usernames and passwords in a CSV.
    If you're talking about Live@edu you could set them up with random passwords and inform users that they would need to change them on first login.... however if you're using some ID management like ILM you could set up PCNS and just get the users to change their AD password which will prompt PCNS to sync that change to the cloud...

    There's no way trying to figure out your own users passwords sounds like a good (or easy, or possible) idea.

  11. #11
    zag
    zag is offline
    zag's Avatar
    Join Date
    Mar 2007
    Posts
    3,765
    Thank Post
    898
    Thanked 417 Times in 350 Posts
    Blog Entries
    12
    Rep Power
    87
    Yep its for Live@edu, I simply want to setup all of our admin staff (about 15 of them) with accounts as a test.

    Ideally I could just tell them to log in with their normal usernames@newdomain.co.uk and passwords

    I took a look at ILM but gave up on about page 20 of the install instructions

    I think I will just ask them, its a lot easier.
    Last edited by zag; 20th January 2011 at 05:05 PM.

  12. #12
    jamesbmarshall's Avatar
    Join Date
    Feb 2010
    Location
    Reading, UK
    Posts
    524
    Thank Post
    26
    Thanked 229 Times in 159 Posts
    Rep Power
    86
    Quote Originally Posted by zag View Post
    Yep its for Live@edu, I simply want to setup all of our admin staff (about 15 of them) with accounts as a test.
    If it is for such a small number of test users why not just give them temporary passwords and have them change them? If your admin staff are savvy they won't give up their passwords, and if they do they probably need training about security.

    ILM is probably overkill for a small test, but once it is up and running it takes the headache away from provisioning / de-provisioning at the start and end of every academic year. Best case scenario is that you have it tied in to your MIS, so that when your admin team do the yearly enrollment your AD users and Live@edu accounts are automatically provisioned through ILM (or FIM...).

    Outside of Live@du there is a strong case for ID management as more and more systems require some for of ID (MIS, cloud services, databases, VLEs, etc) but have no way to bring it all together.

  13. #13
    zag
    zag is offline
    zag's Avatar
    Join Date
    Mar 2007
    Posts
    3,765
    Thank Post
    898
    Thanked 417 Times in 350 Posts
    Blog Entries
    12
    Rep Power
    87
    I ended up importing the usernames via ad export >> CSV file and gave them all a password of "password". Users are then asked to change their password on first login.

    I did find some software that cracked the passwords called L0phtCrack Password Auditor and it worked perfectly on the 10 test accounts I threw at it but a little expensive to buy the full program. Actually pretty scary what it can do!
    Last edited by zag; 25th January 2011 at 03:49 PM.

SHARE:
+ Post New Thread

Similar Threads

  1. Replies: 3
    Last Post: 29th March 2010, 01:01 PM
  2. User passwords and users rights.
    By Number6 in forum Windows
    Replies: 11
    Last Post: 15th January 2010, 09:53 AM
  3. (Bulk) Change user passwords using csv
    By PEO in forum Windows Server 2008
    Replies: 2
    Last Post: 3rd June 2009, 12:50 PM
  4. Replies: 7
    Last Post: 13th May 2009, 05:54 PM
  5. Replies: 2
    Last Post: 30th January 2007, 10:27 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •