Path: csiph.com!eternal-september.org!feeder3.eternal-september.org!news.eternal-september.org!eternal-september.org!.POSTED!not-for-mail From: Erland Sommarskog Newsgroups: comp.databases.ms-sqlserver Subject: Re: Determine what password is used during a login attempt Date: Wed, 05 Mar 2025 19:55:43 +0100 Organization: Erland Sommarskog Lines: 24 Message-ID: References: <20250305142848.fc47cf2469d2b8e8a1b6675d@g{oogle}mail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: 8bit Injection-Date: Wed, 05 Mar 2025 19:55:44 +0100 (CET) Injection-Info: dont-email.me; posting-host="e81474b3875787af755681c95d4a5854"; logging-data="2682386"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX1+bEkKENjvQtwuzcRUUWAdG" User-Agent: Xnews/2006.08.24 Mime-proxy/2.1.c.0 (Win32) Cancel-Lock: sha1:O9ovG+yV1384b/2i33yM2amE2fQ= Xref: csiph.com comp.databases.ms-sqlserver:2263 Anton Shepelev (anton.txt@g{oogle}mail.com) writes: > Hello, all > Yeah "all", it's soooo crowded here. :-) > For some reason beyond our understanding, an installation of > SAP Business One on one of our servers has lost the ability > to connect to the MSSQL database under an internal, > automatically crated user B1_SBOCOMMON. The Profiler > intercepts the attempt: > > Logon Error: 18456, Severity: 14, State: 8. > Logon Login failed for user 'B1_SBOCOMMON'. > Reason: Password did not match that for the login provided. > [CLIENT: 192.168.0.193] > > Is it possible determine the password it tries to use, if we > have full admin access to that database (and the entire > server) under the 'sa' user? No. It's an encrypted hash. If it was reversible that would be a major security issue.