Share via

Setting Store password using reversible encryption per user object

Dan 20 Reputation points
2023-07-06T23:32:04.66+00:00

Hello, I am curious if anyone knows which setting takes precedence in the following scenario.

The default domain policy has "Store passwords using reversible encryption" set as disabled and an individual object has it enabled in the Account options.

User's image

Will reversible encryption be applied to the user object, or will it have to be excluded from the policy?

We need to use CHAP for authentication, hence the requirement for reversible encryption.

Thanks!

Windows for business Windows Client for IT Pros Directory services Active Directory
Windows for business Windows Client for IT Pros User experience Other
0 comments
Accepted answer
  1. Anonymous
    2023-07-07T02:55:23.86+00:00

    Hi,

    If there is a conflict between the Group Policy setting and the individual setting, the Group Policy setting takes precedence. In your case "Store passwords using reversible encryption" has to be set as enabled in the group policy.

    Best Regards,

    Ian Xue

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    1 person found this answer helpful.
    0 comments

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.