Verifying an account password without modyfying the last logon

Verifying an account password without modyfying the last logon
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Microsoft Applications Security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
Verifying an account password without modyfying the last logon Brian Stoop 07-05-2008
Posted by Brian Stoop on July 5, 2008, 10:36 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Is there a method of checking that a Windows Local or Domain account
password matches a given password, without the account last logon date being
modified?

E.g: if I check the password based on a successfull $IPC share, then the
Last Logon date of the user changes, i would like to avoid this date
changing.


thanks, B



Posted by S. Pidgorny on July 6, 2008, 1:26 am
If you were  Registered and logged in, you could reply and use other advanced thread options
There's a reason that attribute exists and gets updated by the DC. If you'll
find a way of doing that (bar going back to Windows 200 domain) - please let
us know, that would be considered a security issue with Windows.

--
Svyatoslav Pidgorny, MS MVP - Security, MCSE
-= F1 is the key =-

* http://sl.mvps.org * http://msmvps.com/blogs/sp *

> Is there a method of checking that a Windows Local or Domain account
> password matches a given password, without the account last logon date
> being modified?
>
> E.g: if I check the password based on a successfull $IPC share, then the
> Last Logon date of the user changes, i would like to avoid this date
> changing.
>
>
> thanks, B
>



Posted by Brian Stoop on July 6, 2008, 1:45 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Thanks.

> There's a reason that attribute exists and gets updated by the DC. If
> you'll find a way of doing that (bar going back to Windows 200 domain) -
> please let us know, that would be considered a security issue with
> Windows.
>
> --
> Svyatoslav Pidgorny, MS MVP - Security, MCSE
> -= F1 is the key =-
>
> * http://sl.mvps.org * http://msmvps.com/blogs/sp *
>
>> Is there a method of checking that a Windows Local or Domain account
>> password matches a given password, without the account last logon date
>> being modified?
>>
>> E.g: if I check the password based on a successfull $IPC share, then the
>> Last Logon date of the user changes, i would like to avoid this date
>> changing.
>>
>>
>> thanks, B
>>
>
>



Posted by Alun Jones on July 7, 2008, 4:20 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
> Is there a method of checking that a Windows Local or Domain account
> password matches a given password, without the account last logon date
> being modified?
>
> E.g: if I check the password based on a successfull $IPC share, then the
> Last Logon date of the user changes, i would like to avoid this date
> changing.

Consider that "Last Logon" actually means "Last time password was presented
for authentication"...

Alun.
~~~~




Similar ThreadsPosted
Repetative Account Logon March 28, 2006, 4:31 pm
Re: Logon to account with different credentials February 12, 2007, 12:44 am
Logon to account with different credentials February 11, 2007, 9:12 pm
Consolidate Services logon account? March 28, 2006, 5:28 pm
Account logon time restriction violation March 31, 2008, 11:31 am
Protecting the Automatic Logon Password July 18, 2007, 11:02 am
Force password change at next logon. October 14, 2008, 6:49 am
Smart Card based Logon & User ID and Password June 17, 2005, 10:09 am
No password expiration alert when smart card logon is required December 27, 2005, 1:14 pm
Forgot my password for User Account February 9, 2006, 12:03 pm

The site map in XML format XML site map

Contact Us | Privacy Policy