Use the Phoenix universal boot disk to solve the loss of the local/domain administrator password

If the password of the local administrator is lost, you can delete the SAM file or use the NTPASSWORD software. However, to solve the problem of missing domain administrator passwords, they will be powerless. In this case, you need to use the Phoenix universal boot disk. This article will discuss in detail how to use this disk to solve the problem of administrator password loss.
1. Search for "Phoenix boot disk" or "Phoenix universal boot disk" online, which is about 178 M;
2. Download and decompress the package, and burn the content to a CD;
3. Use this CD to Start the computer and display the XP installation interface. Start ERD Commander 2002 environment and prompt to install the storage device by pressing F6. If necessary, press F7, which will be discussed later;
4. Select the menu. Select ERD Commander 2002;
5. A startup interface similar to XP appears
6. Go to the system installation path. Generally, the operating system, version, and whether the domain controller is automatically detected;
7. A similar XP desktop is displayed: Select Start/Administrative Tools/Locksmith;
8. Go to the ERD Commander 2002 locksmith wizard interface and click Next;
9. Select Administrator and reset the password. (do not manually restart the computer. Otherwise, the modification will be invalid)
10. Select Start/Logoff and click OK;
11. Wait a moment, Click reboot, and restart the computer.
Related discussions:
I. Phoenix boot disk is powerful. It can not only crack the local administrator password, but also versions of NT/2000/XP/03. It can also crack the password of the NT/2000/03 domain administrator, which has been proved by experiments. Because the operating system and version can be automatically identified, and whether the DC is used, You can reset the password in the same way.
In addition, other tools are provided to implement software FOR modifying the registry, restoring NTFS encryption, ntfs for dos, support FOR multiple NICs, and various boot disks.
2. Some old servers have low BIOS versions and are not fully compatible with ACPI. When 2000/03 is installed, a blue screen fault occurs: the user is prompted to disable ACPI without F6 when the system prompts to press F6 to complete 2000/03 installation. You can also upgrade the BIOS. In short, if you need to press F7 to complete the 2000/03 installation of the server, when you use the Phoenix boot disk, select ERD Commander 2002, when prompted to press F6 to install the storage device, press F7, otherwise, a blue screen fault may occur.
3. For the 2003 domain, the security policy of the default domain is different from that of the 2000 domain. The password of the domain user must meet the complexity requirements, and the minimum length of the password is 7. There are three types of passwords: uppercase letters, lowercase letters, numbers, and symbols, and six minimum passwords, third, the password cannot contain all or part of the user name.
So pay attention to this when you use the Phoenix boot disk to reset the 03 domain administrator password. Otherwise, the system will conclude that only the NT/2000 domain can be cracked, and the 03 domain cannot be cracked. That is to say, if the domain password has been lost, the Reset Password Must Meet the complexity and the minimum length of the password is 7. Otherwise, the Reset Password will be invalid.
Of course, when doing this experiment, you can also reset the security policy of the default domain to solve the problem. The procedure is as follows: Start/Program/administrative tool/Domain Security Policy/account policy/password policy:
The password must meet the complexity requirements: From "enabled" to "disabled ";
Minimum Password Length: changed from "7 characters" to "0 characters ".

To make the Policy Modification take effect, use the following methods:
1. Wait for the system to automatically refresh the Group Policy, about 5 minutes ~ 15 minutes
2. Restart the domain controller (if the user policy is modified, log out)
3. Use the gpupdate command. (This is recommended)
Note: The refresh Group policy command secedit/refreshpolicy machine (or user) _ policy/enforce used in 2000 has been replaced by gpupdate in 03. The command format is as follows:
Only refresh the computer policy: gpupdate/target: computer
Only refresh user Policy: gpupdate/target: user
Refresh both: gpupdate
This command also applies when you modify the Group Policy on the domain/OU to take effect immediately for the client or user. Run this command on the client. Automatic refresh interval: The interval between DC and DC is 5 minutes. The interval between DC and DC is more than 2 Multi-DC, which can be up to 15 minutes. The interval between DC and non-DC is 90 +-30 minutes, that is, 60 ~ 120 minutes. ,