Active Directory userPassword attribute

active-directory password
7,139

I don't believe it can be done, due to the fact that the hash is not reversible and is salted.

Usually, even between AD domains, tools that do this intercept the password change request at the domain controller level and execute the change on both domains at the same time, it is not done through a synchronization of the actual LDAP attribute data.

I'd suggest investigating alternatives such as a web interface where people could authenticate against the old LDAP that would grab the password and set it in AD, or something similar.

Share:
7,139

Related videos on Youtube

ianbeks
Author by

ianbeks

Updated on September 17, 2022

Comments

  • ianbeks
    ianbeks almost 2 years

    I've read a little around the subject of the userPassword attribute in AD and how it can be set as a write-alias for unicodePwd.

    We're considering moving from OpenLDAP to AD. I can extract the userPassword from OpenLDAP as a salted hashed string {ssha}blabla... My question is, can I then set this password "as is" in the userPassword attribute of AD with write-alias activated, and have that then update the unicodePwd attribute automatically? Or does the userPassword field expect passwords in clear?

    Basically is there any way I can transfer the user passwords from OpenLDAP to AD?

  • ianbeks
    ianbeks about 13 years
    Thanks. Shame there's no way to do this. Can't see why they don't allow it because it's not exactly a security issue.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Active Directory users unable to change passwords [SSSD]
Domain account keeps getting locked out
Is there a way to reset the password for a list of Active Directory users en-mass?
Active Directory: Track old password changes and expiry dates?
Status of reversible encryption password
Password Policy seems to be ignored for new Domain on Windows Server 2008 R2
Disabling a user's ability to change password on Active Directory
Password Changes and Exchange Activesync AD lockouts
Active directory password change cannot find the file specified
Reset password history in active directory to a specific date