Reputation: 87
How to check if a local user account still have the same password
I have a PowerShell script which does the following on Windows 7 computers:
- Get a random password from a secure server-side application
- reset the password of a specific local user account using this password value
As a next step, I want to periodically check if the password saved on the server is still valid. For now, I am using ValidateCredentials from System.DirectoryServices.AccountManagement.PrincipalContext (see Powershell To Check Local Admin Credentials) but it involves to unencrypt the password and send it back to the computer just for this purpose.
Do you see any better way to check if password is still valid avoiding to use clear text password ? Is it possible to compare some hash, or anything else ?
Regards.
Upvotes: 2
Views: 1402
Answers (1)
Reputation: 127603
You can check the attribute PasswordAge and do a little math to see if the last time the password was changed was the time you set the password.
Upvotes: 2
Related Questions
- Powershell To Check Local Admin Credentials
- Compare two credentials in powershell
- Verify Passwords Match in Windows Powershell
- Verify AD User Password
- Verify Local Admin Password Change in Powershell
- Powershell check if user is local-user and have admin rights from username and password on local windows machine (Not active directory)
- Check if local account has a blank password using Python
- How can I detect whether AD user password is expired without a second account to query AD?
- check if a local user is locked out although he is logged in powershell
- How to implement a password change check in Powershell?