Tuesday, October 2, 2012

How to Recover Active Directory Password with A Live CD

Forgot Active Directory password is one of the most annoying thing for network administrators in medium to large organizations. If the domain controller is very important for your company, then you have to find some other ways to recover Active Directory password than formatting and reinstalling the server. There are many excellent Windows password recovery software available on the internet, but none of them are able to recover Active Directory password.

Active Directory password is encrypted and stored in the NTDS.dit database. Once you’ve forgotten the password, you have no access to all your computer files. So we need to create a Live CD and use it to boot your domain controller for performing password recovery. Password Recovery Bundle is the only software you need in this tutorial.

How to Recover Active Directory Password with A Live CD?
  1. Download and install Password Recovery Bundle on another computer that you can log in.
  2. Prepare a blank CD and insert it into the computer.
  3. Launch Password Recovery Bundle and click on Windows Password button, it will display the ISO burning dialog.
  4. Choose your CD you’ve plugged in and then click on Start Burn button to create a Live CD.
  5. After you have the Live CD, put it into the CD drive of your domain controller whose password you want to recover.
  6. Turn on the domain controller and have it boot from the Live CD. You may need to go into BIOS and set CD/DVD as the first boot device.
  7. After booting from the Live CD, it will load the Windows PE operating system inside the Live CD and start the Reset Windows Password program.
  8. Choose the Active Directory NTDS.dit database, it will display a list of domain user accounts inside the NTDS.dit database.
  9. Choose a domain user account from the list, then click on Reset Password button, the program will replace the forgotten/unknown password with a new password: Password123.
Remove the Live CD and restart the domain controller, you can then log in to your Active Directory user account and recover access to all data and files on your domain controller. The Active Directory password recovery procedure is simple and fast! No need to spend a lot of time to rebuild your server.

No comments:

Post a Comment