126.96.36.199.1 Non-Normative Description
This message is used by DCs to communicate to the PDC both the NT hash and the LM hash of a recently changed password. The target user is identified by a RID, and the NT hash and LM hash is sent in the clear (the transport encrypts on the wire). If the password also immediately expires (that is, the user must change the password upon the next logon), this is also communicated. As such, the server message processing changes the local database to reflect the requested message. This processing is only executed on a PDC.