AD Password Capture by DC

Owned by John Reed (Unlicensed)
Last updated: Apr 05, 2021

Check that SQL credentials validate (syncronizer.agent.config.exe)

Check that Enable Syncronization is checked

Stop and Restart the Agent

  • in Services.msc, check that Agent service is set to Delayed start

Other steps after trying the above

Version 2 uses .trn file in hidden folder, system32\syncronizer.agent

  • turn off agent

  • move the file to another folder - syncronizer.agent.trn

  • turn on agent and try a reset password

 

Version 4 does not use file (it may exist). Writes to registry instead

Test capture by agent

  • Turn off agent

  • Reset password

  • Should be a new guid key under the Sync agent in registry

  • LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Syncronizer.Agent

If not writing to registry

  • check Notification Packages key under LSA

    • Agent should be listed

    • If not, add and reboot

Also running agent service as admin account on local computer may be necessary