Reading the local password policy programmatically

Are there Windows API functions that allows reading what the current password policy is? For instance, minimum length, complexity etc.

If not reading, is there a way to verify a password against the policy programmatically?

Answers


See Security Watch Windows Domain Password Policies. You can hit AD using ADSI or its wrappers. I found a VBScript sample. You can translate it to any language you want:

Sub ListPasswordPolicyInfo( strDomain )
	Dim objComputer
	Set objComputer = GetObject("WinNT://" & strDomain )
	WScript.Echo "MinPasswordAge: " &  ((objComputer.MinPasswordAge) / 86400)
	WScript.Echo "MinPasswordLength: " &  objComputer.MinPasswordLength
	WScript.Echo "PasswordHistoryLength: " &  objComputer.PasswordHistoryLength
	WScript.Echo "AutoUnlockInterval: " &  objComputer.AutoUnlockInterval
	WScript.Echo "LockOutObservationInterval: " &  objComputer.LockOutObservationInterval
End Sub

Dim strDomain
Do
	strDomain = inputbox( "Please enter a domainname", "Input" )
Loop until strDomain <> ""

ListPasswordPolicyInfo( strDomain )

As a bonus, check out LDAP Admin. It's an open source LDAP directory editor, which you can use to test things, and also checkout the code written in Delphi.


Need Your Help

linq limit and filter large set of result

asp.net linq filter

I have a large amount of data in the database. I want to filter the result and get a specific number of product

Advantages of different ways to open windows

javascript performance titanium-mobile appcelerator

So I was reading this question here: How to load another js file on a button click in titanium

About UNIX Resources Network

Original, collect and organize Developers related documents, information and materials, contains jQuery, Html, CSS, MySQL, .NET, ASP.NET, SQL, objective-c, iPhone, Ruby on Rails, C, SQL Server, Ruby, Arrays, Regex, ASP.NET MVC, WPF, XML, Ajax, DataBase, and so on.