PRESS RELEASE: INTERFACE ACQUIRES CENTRIQ'S CORPORATE
IT TRAINING BUSINESS - WE ARE EXPANDING!   (Jan 5, 2023)
Interface and Centriq Logos
LEARN MORE
1-800-264-9029|602-266-8500
  • Course Schedule
    • Microsoft Training
      • Microsoft Fundamentals Training
      • Windows Client
      • Teams
      • Teams / Microsoft 365 / MS365
      • Windows Server 2019
      • SQL Server Transact-SQL
      • SQL Server Administration
      • SQL Server Business Intelligence
      • Power BI
      • Power Platform
      • Azure
      • Data Engineering / Machine Learning
      • Artificial Intelligence (AI)
      • M365 Messaging
      • PowerShell
      • System Center
      • SharePoint
      • Microsoft Security
    • Cloud Computing
      • Azure
      • Amazon Cloud (AWS)
    • Developer Training
      • DevOps
      • Web Development
      • .NET Development and Visual Studio
      • Java Programming
      • Python
    • Cisco Training
      • Cisco CCNA
      • Cisco Routing and Switching
      • Cisco Security
      • Cisco Wireless
      • Cisco Data Center and Storage
      • Cisco Collaboration
      • Cisco Contact Center
      • Cisco DevNet
    • CompTIA Certification
      • CompTIA A+
      • CompTIA CASP+
      • CompTIA Linux+
      • CompTIA Network+
      • CompTIA Project+
      • CompTIA Security+
    • Business Training
      • Project Management
      • ITIL
      • NIST
      • Business Analysis (PBA & CBAP)
      • Agile
    • Security Training
      • ISC2
      • Microsoft Security
      • CompTIA Security
      • NIST
      • Cisco Security
    • Wireless Training
      • Wireless Networking
    • Other Training
      • VMware
      • F5 Networks
      • Citrix
      • Microsoft Excel
  • Exams
    • Student Pricing
  • Subscriptions
  • Interface Gold
    • RemoteLive™
    • Replay™
    • Interface Gold™ Benefits
  • On-Demand
  • Resources
    • Tech Blogs
    • Tech Videos
    • Microsoft Learn Catalog
  • About
    • Instructors
    • Interface TechPak
    • Group Training & Private Classes
    • Contact

Group Policy Preferences Could Allow for Elevation of Privilege

Home > Blogs > Windows Server 2012 > Group Policy Preferences Could Allow for Elevation of Privilege

Group Policy Preferences Could Allow for Elevation of Privilege

Like This Blog 0 Rick Trader
Added by Rick Trader November 18, 2015

If you are using GPO Preferences to distribute passwords across your domain, you could be allowing a hacker to be able to retrieve those passwords. Passwords are stored as part of the GPO and can be retrieved and decrypted by an attacker. These passwords are stored in the GPO as the CPassword attribute.

For instructor-led Windows Server 2012 Training, see our class schedule.

The following Group Policy Preferences allowed an administrator to distribute passwords:

  • Map Drives
  • Local Users and Groups
  • Scheduled Tasks
  • Services and
  • Data Sources

This vulnerability is fully explained in Microsoft Security Bulleting MS14-025. The link to the article is Vulnerability in Group Policy Preferences Could Allow Elevation of Privilege (2962486). To prevent an administrator from inadvertently setting a password with GPO Preferences apply the updates linked in the article.

Once the updates are applied when an administrator opens one of the preferences mentioned above the following dialog box will appear.

001-Group-Policy-Preferences-Security-Warning-Windows-Server

If an administrator clicks into the User Account field or Password field in the preference the following dialog box will appear.

002-Group-Policy-Preferences-Security-CPPassword-Windows-Server

For more information on CPasswords check out the following article, MS14-025: Vulnerability in Group Policy Preferences could allow elevation of privilege.

If administrators have been deploying passwords with GPO Preferences there is a PowerShell Script included in the above article to help locate those GPOs.

User names and passwords can still be configured using PowerShell scripts when this situation is required.

Until next time, RIDE SAFE!

Rick Trader
Windows Server Instructor – Interface Technical Training
Phoenix, AZ

Subscribe to this author's posts feed via RSS

You May Also Like

  • Securing Your Small Office Systems
    Securing Your Small Office Systems
  • On the Topic of Mastery
    On the Topic of Mastery
  • Installing DNS from scratch on a Windows Server
    Installing DNS from scratch on a Windows Server
  • Understanding Primary and Secondary DNS Zones and how to setup Forward and Reverse Lookup Zones
    Understanding Primary and Secondary DNS Zones and how to…
Category Windows Server 2012

Tags

CPassword, CPO, Group Policy Preferences, Group Policy Vulnerability, Hacked Group Policy, Microsoft Security Bulleting, User Account field

Videos You May Like

A Simple Introduction to Cisco CML2

A Simple Introduction to Cisco CML2

0 3640 0

Mark Jacob, Cisco Instructor, presents an introduction to Cisco Modeling Labs 2.0 or CML2.0, an upgrade to Cisco’s VIRL Personal Edition. Mark demonstrates Terminal Emulator access to console, as well as console access from within the CML2.0 product. Hello, I’m Mark Jacob, a Cisco Instructor and Network Instructor at Interface Technical Training. I’ve been using … Continue reading A Simple Introduction to Cisco CML2

Government Edition – Encrypting a USB Flash Drive in Windows 10

Government Edition – Encrypting a USB Flash Drive in Windows 10

0 265 2

In this video, Security Instructor Mike Danseglio demonstrates how to use BitLocker in Window 10 to secure files on a USB Flash drive that adhere to stricter data protection requirements as found inside Government entities. BitLocker 2-day instructor-led training is now available at Interface: BITLOCK: Planning and Deploying BitLocker Drive Encryption Training Video Transcription: Hi. … Continue reading Government Edition – Encrypting a USB Flash Drive in Windows 10

Configuring Windows Mobility Center and How to Turn it On and Off

Configuring Windows Mobility Center and How to Turn it On and Off

1 1402 1

Video transcription Steve Fullmer: In our Windows training courses, we often share information about the Windows 8.1 Mobility Center. Mobility Center was introduced for mobile and laptop devices in Windows 7. It’s present and somewhat enhanced in Windows 8. Since we don’t have mobile devices in our classrooms, I decided to take a little bit … Continue reading Configuring Windows Mobility Center and How to Turn it On and Off

Write a Comment

Share your thoughts...

Please fill out the comment form below to post a reply.

Microsoft Subscription

Blogs by Technology

  • Amazon AWS (2)
  • Azure Cloud Computing (2)
  • Business Analysis (8)
  • Cisco (125)
  • CompTIA (71)
  • Developer Visual Studio / ASP.NET (62)
  • Exchange Server (47)
  • ITIL / COBIT (33)
  • Lync Server (3)
  • Office 365 (5)
  • PMP Project Management (63)
  • PowerShell (81)
  • Security (47)
  • SharePoint (93)
  • SQL Server (78)
  • System Center (13)
  • Web Development (60)
  • Windows 10 (65)
  • Windows 7 (124)
  • Windows 8 (85)
  • Windows Server (74)
  • Windows Server 2012 (90)
  • Windows Server 2016 (14)
  • Wireless (9)
  • Wireshark (5)

Blogs by Instructor

  • Dan Wahlin (44)
  • Don Jones (15)
  • Dr. Avril Salter (6)
  • Greg Richard (1)
  • Interface (49)
  • Jason Helmick (38)
  • Jeff Jones (18)
  • Jeremy Cioara (8)
  • Mark Jacob (128)
  • Mark Thomas (28)
  • Mike Danseglio (93)
  • Mike Pfeiffer (35)
  • Peter Avila (32)
  • Rick Trader (127)
  • Spike Xavier (86)
  • Steve Fullmer (163)
  • Suzanne Van Hove (1)

Blogs You May Like

  • Fixing Incorrect System Time and Setting Internet Time Settings
  • Needs vs Wants in Project Management – Luxury Maybach or a Golf Cart?
  • Stakeholder Relationships and Stakeholder Engagement in Project Management
  • Decision Trees in Business Analysis PMI-PBA (Fast Food vs Fine Dining?)
  • Securing Your Small Office Systems
  • On the Topic of Mastery

Video Courses

  • ITIL 4 Foundation Certification Video Training Course
  • Project Management Professional (PMP®) Certification Video Training PMBOK® 6th Edition
  • PMI-PBA Business Analysis for IT Analysts and Project Managers (PMI-PBA)® Certification
  • SharePoint Designer 2013 for American Express
  • CompTIA Network+ (Coming Soon!)
  • CompTIA Security+ (Coming Soon!)
  • CompTIA A+ Certification Core 1 1001 (Coming Soon)
  • CompTIA A+ Certification Core 2 1002 (Coming Soon)

Live Training Courses

  • NET+007: CompTIA Network+ Certification Training + N10- 007 Exam
  • PowerShell - 10961: Automating Administration with Windows PowerShell
  • ITIL4® Foundation Certification Course with Exam
  • AZ-100: Azure Infrastructure and Deployment Training
  • PMI-PBA: Business Analysis for IT Analysts and Project Managers (PMI-PBA Certification)
  • Cisco CCNA - ICND1v3 Interconnecting Cisco Networking Devices CCNA Part 1
  • COBIT205: COBIT® 5 Foundation and Implementation IT Governance Training
  • DEV415: Microservices with ASP.NET Core and Docker
  • IT Security - SEC+501: CompTIA Security+ with Certification Exam SY0-501
  • SQL Server - SQL101: Introduction to Transact SQL
Facebook
Twitter
Linked In
Comment
EMAIL

About Us

  • Interface Gold™ Benefits
  • Interface TechPak
  • Group Training & Private Classes

Contact Us

3115 N 3rd Ave
G130
Phoenix, AZ 85013

602-266-8500

Stay in touch on our social channels!
Twitter
Facebook
LinkedIn
State of Arizona Contract # ADSPO18-210228

Copyright © 2023 Interface Technical Training. All Rights Reserved.

Interface Live Training Terms and Conditions Terms of Use Microsoft Subscription Terms and Conditions Privacy Policy WIOA Policy

Insert/edit link

Enter the destination URL

Or link to existing content

    No search term specified. Showing recent items. Search or use up and down arrow keys to select an item.