Investigating an internal security breach, I’d like to know what previous passwords a suspect has used, in an NT/4, Win2K, A/D environment. We force p/w change every 90 days, and disallow use of previous passwords. Q1: how far back does the OS check…12 passwords? Q2: is the length of this list a system parameter? Q3: is there a way a sysadmin can decrypt this file and see the prior passwords?
Thanks for your help.
BT
