Technology Tips and News
Hi,
When PCNS intercepts the password change on a DC, what format does it send the password to FIM in? is it clear text?
I am asking this because we require to sync AD passwords with a systems where we do not have a Management Agent for (via FIM).
Came across this script, and was wondering if it can be used for password sync & FIM?
http://blog.goverco.com/p/psmapwdmanage.html
Thank you.
SK
Hello Shim,
Password is propagated with clear text from DC to FIM. Then, FIM only stores encrypted passwords temporarily. All passwords received by FIM during a password change notification operation are encrypted as soon as they enter the FIM process. The moment they are successfully sent out to the target connected data source, they are decrypted, and the memory storing the password is immediately cleared. If the operation fails to write to the target connected data source, the encrypted password is stored until all retry attempts have been attempted, and then is cleared from memory.
The script you linked is a script for powershell management agent made by Soren, so... you'd need to create MA for this connected system to allow password reset
This topic is archived. No further replies will be accepted.
Other recent topics
Click here to get your free copy of Network Administrator. Over 25 plugins to make your life easier