Windows 2008 R2 stand-alone: Change of hashing algorithm for user passwords
.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty{ height:90px;width:728px;box-sizing:border-box;
}
On a Windows 2008 R2 machine, which is not part of an AD-environment, the local account passwords are stored using unsalted MD4 hashes. Is it possible, to
- Change the hashing algorithm and
- enable salting?
UPDATE 1:
I found a setting in gpedit.msc: Computer Configuration > Windows Settings > Security Settings > Security Options > System cryptography: Use FIPS compliant algorithms for encryption.
According to 1 this however does not seem to affect the hashing algorithm applied to user passwords.
passwords windows-server-2008-r2 hashing
asked Mar 12 at 11:44
user1192748user1192748
1084
add a comment |
On a Windows 2008 R2 machine, which is not part of an AD-environment, the local account passwords are stored using unsalted MD4 hashes. Is it possible, to
- Change the hashing algorithm and
- enable salting?
UPDATE 1:
I found a setting in gpedit.msc: Computer Configuration > Windows Settings > Security Settings > Security Options > System cryptography: Use FIPS compliant algorithms for encryption.
According to 1 this however does not seem to affect the hashing algorithm applied to user passwords.
passwords windows-server-2008-r2 hashing
asked Mar 12 at 11:44
user1192748user1192748
1084
add a comment |
On a Windows 2008 R2 machine, which is not part of an AD-environment, the local account passwords are stored using unsalted MD4 hashes. Is it possible, to
- Change the hashing algorithm and
- enable salting?
UPDATE 1:
I found a setting in gpedit.msc: Computer Configuration > Windows Settings > Security Settings > Security Options > System cryptography: Use FIPS compliant algorithms for encryption.
According to 1 this however does not seem to affect the hashing algorithm applied to user passwords.
passwords windows-server-2008-r2 hashing
asked Mar 12 at 11:44
user1192748user1192748
1084
On a Windows 2008 R2 machine, which is not part of an AD-environment, the local account passwords are stored using unsalted MD4 hashes. Is it possible, to
- Change the hashing algorithm and
- enable salting?
UPDATE 1:
I found a setting in gpedit.msc: Computer Configuration > Windows Settings > Security Settings > Security Options > System cryptography: Use FIPS compliant algorithms for encryption.
According to 1 this however does not seem to affect the hashing algorithm applied to user passwords.
passwords windows-server-2008-r2 hashing
passwords windows-server-2008-r2 hashing
asked Mar 12 at 11:44
user1192748user1192748
1084
asked Mar 12 at 11:44
user1192748user1192748
1084
edited Mar 12 at 14:36
user1192748
asked Mar 12 at 11:44
user1192748user1192748
1084
asked Mar 12 at 11:44
user1192748user1192748
1084
asked Mar 12 at 11:44
user1192748user1192748
1084
1084
add a comment |
add a comment |
1 Answer
1
active
oldest
votes
No, You are not allowed to change Hashing Algorithm in server 2008
answered Mar 12 at 12:04
serverAdmin123serverAdmin123
1165
1
Can you provide a citation for this?
– DavidPostill♦
Mar 12 at 13:18
@serverAdmin123 this answer without references or sources does not help.
– user1192748
Mar 12 at 14:37
reddit.com/r/sysadmin/comments/49zepq/…
– serverAdmin123
Mar 12 at 16:57
add a comment |
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "3"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1413364%2fwindows-2008-r2-stand-alone-change-of-hashing-algorithm-for-user-passwords%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
1 Answer
1
active
oldest
votes
1 Answer
1
active
oldest
votes
active
oldest
votes
active
oldest
votes
No, You are not allowed to change Hashing Algorithm in server 2008
answered Mar 12 at 12:04
serverAdmin123serverAdmin123
1165
1
Can you provide a citation for this?
– DavidPostill♦
Mar 12 at 13:18
@serverAdmin123 this answer without references or sources does not help.
– user1192748
Mar 12 at 14:37
reddit.com/r/sysadmin/comments/49zepq/…
– serverAdmin123
Mar 12 at 16:57
add a comment |
No, You are not allowed to change Hashing Algorithm in server 2008
answered Mar 12 at 12:04
serverAdmin123serverAdmin123
1165
1
Can you provide a citation for this?
– DavidPostill♦
Mar 12 at 13:18
@serverAdmin123 this answer without references or sources does not help.
– user1192748
Mar 12 at 14:37
reddit.com/r/sysadmin/comments/49zepq/…
– serverAdmin123
Mar 12 at 16:57
add a comment |
No, You are not allowed to change Hashing Algorithm in server 2008
answered Mar 12 at 12:04
serverAdmin123serverAdmin123
1165
No, You are not allowed to change Hashing Algorithm in server 2008
answered Mar 12 at 12:04
serverAdmin123serverAdmin123
1165
edited Mar 12 at 16:54
answered Mar 12 at 12:04
serverAdmin123serverAdmin123
1165
answered Mar 12 at 12:04
serverAdmin123serverAdmin123
1165
answered Mar 12 at 12:04
serverAdmin123serverAdmin123
1165
1165
1
Can you provide a citation for this?
– DavidPostill♦
Mar 12 at 13:18
@serverAdmin123 this answer without references or sources does not help.
– user1192748
Mar 12 at 14:37
reddit.com/r/sysadmin/comments/49zepq/…
– serverAdmin123
Mar 12 at 16:57
add a comment |
1
Can you provide a citation for this?
– DavidPostill♦
Mar 12 at 13:18
@serverAdmin123 this answer without references or sources does not help.
– user1192748
Mar 12 at 14:37
reddit.com/r/sysadmin/comments/49zepq/…
– serverAdmin123
Mar 12 at 16:57
1
1
Can you provide a citation for this?
– DavidPostill♦
Mar 12 at 13:18
Can you provide a citation for this?
– DavidPostill♦
Mar 12 at 13:18
@serverAdmin123 this answer without references or sources does not help.
– user1192748
Mar 12 at 14:37
@serverAdmin123 this answer without references or sources does not help.
– user1192748
Mar 12 at 14:37
reddit.com/r/sysadmin/comments/49zepq/…
– serverAdmin123
Mar 12 at 16:57
reddit.com/r/sysadmin/comments/49zepq/…
– serverAdmin123
Mar 12 at 16:57
add a comment |
Thanks for contributing an answer to Super User!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1413364%2fwindows-2008-r2-stand-alone-change-of-hashing-algorithm-for-user-passwords%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
