You could remove or change it and see what breaks.
Domain credentials are locally cached so you are able to log into a machine even if a DC is unavailable.
Yup, it was a huge pain in the ass when my password expired and I had to figure out which of the 50 servers I logged into over the past month had it cached and would lock me out constantly.
It was such an issue that I even wrote software to figure it out for me.
Time to join the dark side.
You don't need Windows. You don't need this job. No one will ever force the Windows upon you *handwave*
That was my old job. Now I only use windows to manage an aws directory service occasionally. Everything else is RHEL.
I don’t know but sounds troubling, good find.
probably you tried authenticate a network share connection with your password and clicked option to remem ber it?
Hmm, I think all of our shares are using domain accounts, which should authenticate automatically without requiring to enter credentials, as long as you are logged in for a account that has access AFAIK. I don't remember logging in to any share, so I think that's not it.
Except this doesn't work as faultless as you expect. If your DC is not reachable for some reason when you log in, you'll have to authenticate afterwards to actually access the share. (If the share even loaded properly because this tends to happen in the login phase).
This not to say there are no security risks to what is happening, but this situation is much, much more common than you think. And having to authenticate again at that point is actually more secure than just assuming you have access because your username exists or you authenticated against cached credentials.
Cybersecurity
c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.
THE RULES
Instance Rules
- Be respectful. Everyone should feel welcome here.
- No bigotry - including racism, sexism, ableism, homophobia, transphobia, or xenophobia.
- No Ads / Spamming.
- No pornography.
Community Rules
- Idk, keep it semi-professional?
- Nothing illegal. We're all ethical here.
- Rules will be added/redefined as necessary.
If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.
Learn about hacking
Other security-related communities !databreaches@lemmy.zip !netsec@lemmy.world !cybersecurity@lemmy.capebreton.social !securitynews@infosec.pub !netsec@links.hackliberty.org !cybersecurity@infosec.pub !pulse_of_truth@infosec.pub
Notable mention to !cybersecuritymemes@lemmy.world