Re: [ActiveDir] Windows 2003 R2 Issue

Wed, 16 Aug 2006 08:09:22 -0700

I have to agree with Michael.  Why would you want to do that?  I mean, the machine password changes frequently and you *could* just re-add/reset the machine password if you needed to.  IIRC, this is covered in the Exchange DR whitepaper as well. You may want to have a look.
 
As to why it no longer works but did before? Who knows?  Likely a security change because you should not have been able to read it before.  That machine has a high level of privileges in AD by default.  You wouldn't want people to be able to read the password.
 
al

 
On 8/16/06, Michael B. Smith <[EMAIL PROTECTED]> wrote:
Now I understand your appliance architecture and how you deal with the encryption issues.
 
This doesn't seem like a smart way to do it, to me.

From: [EMAIL PROTECTED] [mailto: [EMAIL PROTECTED]] On Behalf Of Manjeet Singh
Sent: Wednesday, August 16, 2006 4:26 AM

To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] Windows 2003 R2 Issue

 

I am trying to read the machine password from exchange server (Windows 2003 R2 Standard + SP1, Exchange 2003 +SP2). I have tried some other tools also (like lsadump) but they all are failing to read it.

We are working on Exchange DR solution- so we need to import the machine password from production exchange server and we set the same password on our DR box.

 

 

The same function is working on windows 2000 and windows 2003 in same domain. But its failing on Windows 2003 R2.

 

From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of joe
Sent: Sunday, August 13, 2006 1:42 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] Windows 2003 R2 Issue

 

I have two questions.

 

1. Where are you reading the password from?

 

2. Why?

 

--

O'Reilly Active Directory Third Edition - http://www.joeware.net/win/ad3e.htm 

 

 

 

From: [EMAIL PROTECTED] [mailto: [EMAIL PROTECTED]] On Behalf Of Manjeet Singh
Sent: Friday, August 11, 2006 7:52 PM
To: ActiveDir@mail.activedir.org
Subject: [ActiveDir] Windows 2003 R2 Issue

Hi,

 

I have one test setup with Windows 2003 R2 with SP1.

Single Domain Topology:

 

AD Server = Windows 2003 R2 + SP1

Exchange Server: - Windows 2003 R2 + Exchange 2003 Ent + SP2 + latest Microsoft security patches.

 

Problem: I am unable to read the machine password of the Exchange Server. It says Error if I try to access the machine password. I need the machine password of exchange server for testing some code. Any idea what could be the reason?

 

I am able to get the password successfully from another exchange server which is running in Windows 2003 OS.


Reply via email to