InstantForum.NET v2.9.0SQLServerCentralhttp://www.sqlservercentral.com/Forums/notifications@sqlservercentral.comSat, 18 May 2013 03:39:34 GMT20http://www.sqlservercentral.com/Forums/Topic1399865-1526-1.aspx[quote][b]charlesrivera564 (1/1/2013)[/b][hr]You will not be able to unencrypt the data without the key you used to encrypt the data. Is there no way or close source to found the key ?[/quote]Both of your posts have been reported as containing link-spam in your signature. Please go spam for internet gambling sites somewhere else.Tue, 01 Jan 2013 05:28:04 GMTopc.threehttp://www.sqlservercentral.com/Forums/Topic1399865-1526-1.aspxYou will not be able to unencrypt the data without the key you used to encrypt the data. Is there no way or close source to found the key ?Tue, 01 Jan 2013 05:13:37 GMTcharlesrivera564http://www.sqlservercentral.com/Forums/Topic1399865-1526-1.aspxI had tried to do that initially except I had naively used a known password from a different db which obviously used different encryption settings. Thanks for the help! :-DMon, 31 Dec 2012 02:59:16 GMTjpmuirhttp://www.sqlservercentral.com/Forums/Topic1399865-1526-1.aspx[quote]Joie Andrew - I don't think there's a way to reset the password from the application other than the change password option each user is given on the login page - unfortunately this requires the old password.[/quote]So what you [i]could[/i] try for future scenarios is something like this:- Create a new user in the application and setup a known password- Query for that user in the database- Note the value of the encrypted password column for the known password- If a user needs a password reset and does not know the password update that user record to have the password match what you set in step one- Have the user reset their password in the application using the password you set in step one as the "old password"Mon, 31 Dec 2012 02:20:04 GMTJoie Andrewhttp://www.sqlservercentral.com/Forums/Topic1399865-1526-1.aspxJoie Andrew - I don't think there's a way to reset the password from the application other than the change password option each user is given on the login page - unfortunately this requires the old password. Sean Lange - I think the data is encrypted in the database rather than the application.Sorry took a while to get back to you. Thanks for the quick responses especially over the holiday period. We have set up the user with another account so its not quite as urgent as it was, although the problem with the old username is still there.Mon, 31 Dec 2012 02:14:01 GMTjpmuirhttp://www.sqlservercentral.com/Forums/Topic1399865-1526-1.aspxWhere is the encrypted data being decrypted? Is all the encryption handled in the application or in the database?Wed, 26 Dec 2012 07:53:21 GMTSean Langehttp://www.sqlservercentral.com/Forums/Topic1399865-1526-1.aspx[quote]I'm attempting (unsuccessfully) to reset a password, the issue is that the column with the passwords in is encrypted. I don't know what key was used to encrypt the data or the what the certificate is. Is there a way of resetting the password in one of the rows without these bits of info?[/quote]No. Without the key that was used to encrypt the data you will not be able to unencrypt the data, which you would need to be able to do in order to read the old values. Even if you cannot read the old values you need the encryption key in order to encrypt the new values so that when the value gets unencrypted by whatever application it is supporting it is getting the value you expect it to see.Is there not a way in the application the database is supporting to reset the password?Wed, 26 Dec 2012 03:13:09 GMTJoie Andrewhttp://www.sqlservercentral.com/Forums/Topic1399865-1526-1.aspxHi all, I'm attempting (unsuccessfully) to reset a password, the issue is that the column with the passwords in is encrypted. I don't know what key was used to encrypt the data or the what the certificate is. Is there a way of resetting the password in one of the rows without these bits of info?Ive attempted copying a password that i know to be correct from a different db into the password column but it doesn't work, I'm assuming this is due to the way I'm trying to update the password without encrypting it upon entry?I also attempted setting the password to Null so that I could attempt to change the password on the environment login screen - again without success.any suggestions? Thanks Mon, 24 Dec 2012 05:09:33 GMTjpmuir