Store password using reversible encryption for all users in the domain

Computer Configuration\Windows Settings\Security Settings\Account Policies\Password Policy


Determines whether Windows 2000 will store passwords using reversible encryption.

The intent of this policy is to provide support for applications which use protocols that require knowledge of the user password for authentication purposes. Storing passwords using reversible encryption is essentially the same as storing clear-text versions of the passwords. For this reason, this policy should never be enabled unless application requirements outweigh the need to protect password information.

By default, this setting is disabled in the Default Domain Group Policy object (GPO) and in the local security policy of workstations and servers.