Error modifying password win7
zouba_slim
Posted messages
44
Status
Member
-
zouba_slim Posted messages 44 Status Member -
zouba_slim Posted messages 44 Status Member -
Hello,
I have a PC connected to a company's network, and the technician changed the sessions on the server and changed our passwords? On my PC, when I try to change the password, I cannot, and an error appears that says "Unable to update the password. The new password entered does not meet the length, complexity, or domain history specifications."
Additional information:
- The technician gave me access to change the password, and he himself does not know where the problem lies.
- I tried changing the password in such a way that I only change the placement of the characters.
- The domain is correct.
- I tried changing the password without being connected to the network.
But unfortunately, the same problem persists.
Is there anyone who can help me to be more secure? Thank you for everything.
Configuration: Windows 7 / Internet Explorer 8.0
I have a PC connected to a company's network, and the technician changed the sessions on the server and changed our passwords? On my PC, when I try to change the password, I cannot, and an error appears that says "Unable to update the password. The new password entered does not meet the length, complexity, or domain history specifications."
Additional information:
- The technician gave me access to change the password, and he himself does not know where the problem lies.
- I tried changing the password in such a way that I only change the placement of the characters.
- The domain is correct.
- I tried changing the password without being connected to the network.
But unfortunately, the same problem persists.
Is there anyone who can help me to be more secure? Thank you for everything.
Configuration: Windows 7 / Internet Explorer 8.0
13 answers
No, this option must be disabled:
the password must meet complexity requirements
It is located in "Password Policy" found under "Account Policies"
the password must meet complexity requirements
It is located in "Password Policy" found under "Account Policies"
I am actually calling an executable before logging in that will allow me to access the command prompt as the system user. It is then up to me to change a password, create a user, format, etc. In short, all commands are available.
Step 1: play around with two executables
Use a LiveCD such as Knoppix, BackTrack, or BartPE to access your NTFS system partition (C: from Windows).
Rename the file Utilman.exe to Utilman.exe.bak located in the directory C:\Windows\System32\
Make a copy of the file cmd.exe and rename it to Utilman.exe (everything happens in the same directory).
We have just replaced the executable for accessibility options (Utilman.exe) with the executable for the command prompt (cmd.exe)
Restart your PC normally under Windows (Vista or Seven).
Step 2: exploit the vulnerability
Following the success of the previous screencast on Spotify, I decided to make another one. I regret almost every time how much time editing (zoom & pan) takes, but well, failing to find better...
I recorded this screencast under virtualized Windows 7 using VirtualBox.
(remember to enable HD in the YouTube player for better playback)
In my example, I create a user "bmotion" with the password "kikoolol" and add him to the administrators group ("administrators" as the beta is in English).
Also, see the video using BackTrack 3 at Offensive Security.
Conclusion
What can I say... that Microsoft engineers and developers should have integrated the call to this famous accessibility utility at the very heart of the system instead of relying on a "third-party executable."
Once again, I see that Windows Seven is just a pale copy of Windows Vista, even its flaws have not changed, as for its qualities, I would bet only on the aesthetics of the taskbar!
Let’s not forget that Windows Vista is on kernel 6.0 and Windows Seven on 6.1. For comparison, Windows XP is equipped with kernel 5.1, which is a real leap in version!
I expected nothing less than a kernel 7.0 for Seven, which after all would have been well-timed, missed!
Sigh :/
Update: Due to too many comments from visitors who did not read the post and were simply asking how to reset a lost password, comments are closed. This was a demonstration; it is not online technical support...
Step 1: play around with two executables
Use a LiveCD such as Knoppix, BackTrack, or BartPE to access your NTFS system partition (C: from Windows).
Rename the file Utilman.exe to Utilman.exe.bak located in the directory C:\Windows\System32\
Make a copy of the file cmd.exe and rename it to Utilman.exe (everything happens in the same directory).
We have just replaced the executable for accessibility options (Utilman.exe) with the executable for the command prompt (cmd.exe)
Restart your PC normally under Windows (Vista or Seven).
Step 2: exploit the vulnerability
Following the success of the previous screencast on Spotify, I decided to make another one. I regret almost every time how much time editing (zoom & pan) takes, but well, failing to find better...
I recorded this screencast under virtualized Windows 7 using VirtualBox.
(remember to enable HD in the YouTube player for better playback)
In my example, I create a user "bmotion" with the password "kikoolol" and add him to the administrators group ("administrators" as the beta is in English).
Also, see the video using BackTrack 3 at Offensive Security.
Conclusion
What can I say... that Microsoft engineers and developers should have integrated the call to this famous accessibility utility at the very heart of the system instead of relying on a "third-party executable."
Once again, I see that Windows Seven is just a pale copy of Windows Vista, even its flaws have not changed, as for its qualities, I would bet only on the aesthetics of the taskbar!
Let’s not forget that Windows Vista is on kernel 6.0 and Windows Seven on 6.1. For comparison, Windows XP is equipped with kernel 5.1, which is a real leap in version!
I expected nothing less than a kernel 7.0 for Seven, which after all would have been well-timed, missed!
Sigh :/
Update: Due to too many comments from visitors who did not read the post and were simply asking how to reset a lost password, comments are closed. This was a demonstration; it is not online technical support...
Thank you for the reply, james-pro
it's very complicated; I don't think the problem deserves all this; because before the session change, I managed to change my password.
Thanks if you have another response.
it's very complicated; I don't think the problem deserves all this; because before the session change, I managed to change my password.
Thanks if you have another response.
My friend told me:
You need to log in locally as an Administrator, then go to the "Start" menu and then to "Administrative Tools".
You need to log in locally as an Administrator, then go to the "Start" menu and then to "Administrative Tools".
Hi;
Do we need to enable this option: "Do not allow the storage of passwords and credentials for network authentication."
Do we need to enable this option: "Do not allow the storage of passwords and credentials for network authentication."
Hi, yes I found this option but all are disabled and there is no access to modify it. Why?
Thank you
Thank you