I have a few questions about cached credentials in Windows 7 and Server 2008 R2. I used on my local used Windows Credential Editor and i managed to extract a LM and NTLM hash of my password, is it possible to make windows cache the credentials using a more secure hash algorithm? Does the SAM database actually get used in Windows 7/2008 as i have read some sources to say that its not used and other sources say that it is used? We have multiple mobile clients so what is the best way to protect data incase the laptop got stolen? We currently employ bitlocker as well so would this be sufficient ?

Hi, You cannot make Windows store LM and NTLM hash instead of text password. Based on my understanding, Windows still use SAM database for local users. Anyway, about Bitlocker, I think it cannot be hacked. So it is suffient if you choose a proper protection method and set a very strong password. Juke Chou TechNet Subscriber Support If you are TechNet Subscription user and have any feedback on our support quality, please send your feedbackhere. Juke Chou TechNet Community Support