Password Storage in Windows 2003

Giganews Newsgroups
Subject: Password Storage in Windows 2003
Posted by:  Jay (jasonhould…@gmail.com)
Date: 14 Feb 2007

hi there,

I was hoping someone could clarify a few questions for me regarding
Windows 2003, NTLMv2, and Kerberos.

1) What hash is used in Windows2003 Server to store passwords in the
SAM file?
> My understanding is that each password will be stored by default using both a LM Hash (for older compatibility) and using a MD5 hash for NTLMv2.  Is this correct?

2) Win2003 uses Kerberos as the default authentication protocol. Now
does using Kerberos store the password differently than the answer
above? or is Kerberos only the authentication protocol and it uses the
NTLMv2 password hash to authenticate a user before it kicks in to do
authentication between servers.

3) Does Kerberos completely replace NTLMv2?

Thank you

Replies