Enable reversibly encrypted passwords in a domain

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

To enable reversibly encrypted passwords in a domain

  1. Open Active Directory Users and Computers.

  2. In the console tree, double-click Active Directory Users and Computers, right-click the domain name, and then click Properties.

  3. On the Group Policy tab, click Default Domain Policy, and then click Edit.

  4. In the console tree, click Password Policy.

    Where?

    • Computer Configuration/Windows Settings/Security Settings/Account Policies/Password Policy
  5. In the details pane, double-click Store passwords using reversible encryption for all users in the domain.

  6. Click Enabled, and then click OK.

Notes

  • To open Active Directory Users and Computers, click Start, point to Programs, point to Administrative Tools, and then click Active Directory Users and Computers.

  • To open Group Policy on a stand-alone computer that is not a member of a domain, click Start, click Run, type gpedit.msc, and then click OK.

Information about functional differences

  • Your server might function differently based on the version and edition of the operating system that is installed, your account permissions, and your menu settings. For more information, see Viewing Help on the Web.

See Also

Concepts

Working with MMC console files
CHAP