SoftwareTipsandTricks Forum
Register Now - It's Free!
Add to Favorites

Go Back   SoftwareTipsandTricks Forum > Operating Systems > Windows NT/2000/2003
Reload this Page Removing LM hashes from Windows 2003 Active Directory?
User Name
Password


Removing LM hashes from Windows 2003 Active Directory?

Reply
 
Thread Tools Search this Thread Rate Thread Display Modes

  #1  
Old 12-04-2007, 01:35 PM
humbletech99 Offline
Registered User
  
Join Date: Aug 2005
Posts: 95
Removing LM hashes from Windows 2003 Active Directory?
I have a Windows 2003 Active Directory domain and want a way of deleting all existing LM hashes from the AD database.

I know there is a gpo settings to stop Active Directory from creating LM hashes, but this doesn't deal with the ones that already exist.

Does anyone know if/how to remove all currently stored LM hashes from the domain?
Reply With Quote

  #2  
Old 12-18-2007, 03:50 AM
Monty007's Avatar
Monty007 Offline
Registered User
  
Join Date: Jan 2007
Location: Australia
Posts: 1,025
Here is another link http://support.microsoft.com/kb/299656
To remove current LM hashes users would have to change there password.
Reply With Quote

  #3  
Old 12-18-2007, 11:04 AM
humbletech99 Offline
Registered User
  
Join Date: Aug 2005
Posts: 95
this only stops future hashes from being deleted, but there is a good workaround, remove pw history, then force pw changes with no lm hash enforced, which deletes all the old pws and then no lm hashes will survive... you can then re-enable pw history after that.
Reply With Quote

  #4  
Old 12-18-2007, 10:30 PM
Monty007's Avatar
Monty007 Offline
Registered User
  
Join Date: Jan 2007
Location: Australia
Posts: 1,025
So that all worked ok. Nice tip.
Reply With Quote

  #5  
Old 12-19-2007, 05:17 AM
humbletech99 Offline
Registered User
  
Join Date: Aug 2005
Posts: 95
yeah, the only downside is that you lose all pw history and users can use all their old pws....
Reply With Quote
Reply



« Previous Thread | Next Thread »

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes Rate This Thread
Linear Mode Linear Mode
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Windows Server 2003 - Internet Acces Divine Other Operating Systems 17 07-17-2006 12:39 PM
Built a new PC, used old HDDs, Windows is not booting up! Help! nUcLeArEnVoY Windows XP 5 01-20-2006 05:51 PM
Internet Connection Sharing Windows 2003 Server Quizboy Windows NT/2000/2003 0 01-04-2006 03:44 PM
Windows SBS 2003 with Windows Server 2003 Harry7 Windows NT/2000/2003 0 08-23-2005 01:02 AM
Windows Server 2003 - read only masterginzu Other Operating Systems 1 01-24-2005 01:44 PM



All times are GMT -5. The time now is 02:55 AM.
Mark Forums Read | View Forum Leaders
Website Homepage - Site Map - Top


Designed by eXtremepixels. Powered by vBulletin Version 3.5.2
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
SEO by vBSEO 2.3.2 © 2005, Crawlability, Inc.