question

MikhailFirsov-1277 avatar image
0 Votes"
MikhailFirsov-1277 asked MikhailFirsov-1277 answered

Disabling credentials caching in WDigest

Hello!

The theory:
111827-q1-wdigest.png

The practice:
111921-q2-wdigest.png
111828-q3-wdigest.png

Q1: What does the term "WDigest credentials" mean - is this login AND password or only the password?

Q2: The password field was empty even before the policy had been applied - what is preventing the WDigest password from being displayed here if the policy seems not to change anything...?

Thank you in advance,
Michael

windows-serverwindows-server-2019windows-server-security
q1-wdigest.png (150.8 KiB)
q2-wdigest.png (42.4 KiB)
q3-wdigest.png (64.2 KiB)
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DaisyZhou-MSFT avatar image
0 Votes"
DaisyZhou-MSFT answered

Hello @MikhailFirsov-1277,

Thank you for posting here.

Here are the answers for your references.

Q1: What does the term "WDigest credentials" mean - is this login AND password or only the password?
A1: Based on my understanding, it is only the password.

Q2: The password field was empty even before the policy had been applied - what is preventing the WDigest password from being displayed here if the policy seems not to change anything...?
A2: From the following link, you can see the clear-text password before install the KB update and setting UseLogonCredential to 0.


For more information, please refer to link below.
WDIGEST CLEAR-TEXT PASSWORDS: STEALING MORE THAN A HASH
https://stealthbits.com/blog/wdigest-clear-text-passwords-stealing-more-than-a-hash/

Please note: Information posted in the given link is hosted by a third party. Microsoft does not guarantee the accuracy and effectiveness of information.


Hope the information above is helpful.

Should you have any question or concern, please feel free to let us know.


Best Regards,
Daisy Zhou

============================================
If the Answer is helpful, please click "Accept Answer" and upvote it.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

MikhailFirsov-1277 avatar image
0 Votes"
MikhailFirsov-1277 answered

DaisyZhou-MSFT, thank you for help!

Regards,
Michael

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.