Q. How can I check whether a user's password is, or can be, stored on a specific read-only domain controller (RODC)?
John Savill
March 27, 2008
1 Min Read
A. Go to the RODC's Computer Properties window. Access the Password Replication Policy tab, and click Advanced . The computer will display the accounts that currently have their passwords stored on the RODC, as shown below.
An administrator can use the Prepopulate Passwords button in the Advanced Password Replication Policy dialog box to set up accounts and passwords in advance of users logging on for the first time.
You can use utilities such as Proactive Password Auditor (shown below) to confirm stored passwords. Accounts that aren't allowed password replication will be empty. The utility can also empty an RODC's memory.
About the Author
Sign up for the ITPro Today newsletter
Stay on top of the IT universe with commentary, news analysis, how-to's, and tips delivered to your inbox daily.
You May Also Like