how I can add salt to the hashed passwords?

Ezequiel Allievi 0 Reputation points
2024-06-21T20:20:36.75+00:00

how I can add salt to the AD hashed passwords?

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,187 questions
0 comments No comments
{count} votes

2 answers

Sort by: Most helpful
  1. Marcin Policht 17,615 Reputation points MVP
    2024-06-21T21:02:10.0533333+00:00

    In short, this is not natively supported - so you'd need to implement a custom interface/app that your AD users will be somehow forced to use when they change or reset their passwords


    If the above response helps answer your question, remember to "Accept Answer" so that others in the community facing similar issues can easily find the solution. Your contribution is highly appreciated.

    hth

    Marcin

    0 comments No comments

  2. Yanhong Liu 4,805 Reputation points Microsoft Vendor
    2024-06-24T05:59:55.1233333+00:00

    Hello,

    Thank you for posting in Q&A forum.

    Adding salt to hashed passwords in Active Directory (AD) is not directly supported or recommended due to the way AD manages passwords and authentication.

    Adding salt requires modifying the hashing process, which may compromise the security of your AD environment. If you still want to add salt, you will need to implement a custom interface or application that your AD users will be forced to use when changing or resetting their passwords. However, this may introduce new security risks and challenges because you will be responsible for maintaining the security and integrity of this custom solution.

    AD advocates for enhanced security through methods such as strong password policies and multi-factor authentication, rather than directly modifying AD's password hashing and storage mechanisms.

    I hope the information above is helpful.

    Best Regards,

    Yanhong Liu

    ============================================

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    0 comments No comments