Reversible Passwords in GPO



While creating local accounts on machines via GPOs, some administrators may unknowingly store passwords in a format that is accessible to attackers. Additionally, configuring computers to bypass password requirements during startup can also result in such security issues.


GPOs that store reversible passwords are typically legacy settings or autologon features that you should eliminate. These settings expose valid credentials and pose a security risk.

See Also

MS14-025: Vulnerability in Group Policy Preferences could allow elevation of privilege

Indicator Details

Name: Reversible Passwords in GPO


Severity: Medium

MITRE ATT&CK Information:

Tactics: TA0004, TA0006, TA0001

Techniques: T1078