View Single Post
  #5 (permalink)  
Old July 18th, 2003, 06:55 AM
martenrune martenrune is offline
Registered User
 
Join Date: Jun 2003
Location: Stockholm, VÄLLINGE, Sweden.
Posts: 2
Thanks: 0
Thanked 0 Times in 0 Posts
Default

Well it's not easy but...

It's true, you can't get the password from the domaincontroller or whatever but...

You can send: username, presumedPWD and domain to be validated by the sucuritycomponents in windows. This way you will validate the user without knowing his or hers password. Note though this is like logging in on a mashine, after X failed attempt it's likely that the account is locked/disabled!

Yours Truly Mårten :-)

Yours sincerely Marten