Re: Protecting the Automatic Logon Password

Giganews Newsgroups
Subject: Re: Protecting the Automatic Logon Password
Posted by:  S. Pidgorny (slavic…
Date: Thu, 19 Jul 2007

I think automatic logon is designed to require the DefaultPassword value.
Therefore LSA private data won't help, as there is no setting that allow
system to use it for automatic logon (AFAIK).

What are you trying to achieve with this?

Svyatoslav Pidgorny, MS MVP - Security, MCSE
-= F1 is the key =-

* * *

"simple_user" <simpleus…> wrote in message
>    Hi there,
> I was trying to change the way of automatic logon.
> I wrote simple executable using LSA to set password by LsaStorePrivateData
> (). Then I deleted reg.key value 'DefaultPassword'
> I restarted PC (WindowsXP installed) but it didn't get through - it show
> log-on dialog and I have to enter password manually.
> I thought that Winlogon should be able to retrieve 'secret' password and
> not
> to look for 'DefaultPassword' value.
> Do I missing something here? Any additional steps needs?
> Regards,


In response to

Protecting the Automatic Logon Password posted by simple user on Wed, 18 Jul 2007