Verify AD User Password

mervin16 · October 29, 2021, 7:03am

I understand that no secure application has the ability to retrieve a password by using a mere script, but I was wondering if it’s possible to at least verify if an entered password is correct using PowerShell.

I need to build a script that will allow a user to change his AD password, but for that to be possible, he/she needs to enter his current password. I will then perform a check to see if the current entered password is correct before proceeding.

I tried to verify the current attributes that a Get-ADUser can return, but i can’t find anything useful to this.

Can someone please help me out?

krzydoug · October 29, 2021, 9:01am

You can use this code snippet to verify the user credentials.

# Validate credentials
[System.Reflection.Assembly]::LoadWithPartialName("System.DirectoryServices.AccountManagement")
$principalContext = New-Object System.DirectoryServices.AccountManagement.PrincipalContext([System.DirectoryServices.AccountManagement.ContextType]::Domain, '<yourdomain>')
$principalContext.ValidateCredentials('<user>', '<password>')

Topic		Replies	Views
Verify AD Username/Password PowerShell Help	1	226	May 16, 2024
Require AD authentication before running script PowerShell Help	12	632	May 16, 2024
How to check entered credentials for administrator privilege PowerShell Help	8	440	September 29, 2024
ChangePassword ADSI method not working (constraint violation) PowerShell Help	3	1008	May 16, 2024
Create AD user using DSC PowerShell Help	3	162	May 16, 2024

Verify AD User Password

Related topics