In Windows NTLM authentication, the passwords stored on domain controllers are in which database?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Enhance your knowledge as a Computer Hacking Forensic Investigator with the CHFI v11 Test. Use flashcards and multiple-choice questions, complete with hints and detailed explanations, to prepare effectively and ace your exam!

Multiple Choice

In Windows NTLM authentication, the passwords stored on domain controllers are in which database?

Explanation:
NTLM authentication relies on the database that actually stores the user accounts and their credential hashes on the Windows machine. On domain controllers in traditional Windows networks, that credential store is the Security Accounts Manager (SAM). The SAM database contains the accounts (local and domain-related) and their password hashes that NTLM uses during logon. In newer Active Directory environments, domain account data resides in AD’s database (ntds.dit), but for the scenario implied by Windows NTLM on domain controllers, SAM is the store for those credentials. The other options don’t hold the credential hashes: AD’s database is for AD accounts in modern setups, the Password Policy File isn’t the credential store, and the Local Security Authority Database handles policies and secrets rather than the central password hashes.

NTLM authentication relies on the database that actually stores the user accounts and their credential hashes on the Windows machine. On domain controllers in traditional Windows networks, that credential store is the Security Accounts Manager (SAM). The SAM database contains the accounts (local and domain-related) and their password hashes that NTLM uses during logon. In newer Active Directory environments, domain account data resides in AD’s database (ntds.dit), but for the scenario implied by Windows NTLM on domain controllers, SAM is the store for those credentials. The other options don’t hold the credential hashes: AD’s database is for AD accounts in modern setups, the Password Policy File isn’t the credential store, and the Local Security Authority Database handles policies and secrets rather than the central password hashes.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy