how to retrieve a non sa password in SQL Server?

Question

Is it possible to retrieve (if the user has sa rights) the password of a user in SQL Server 2008 R2?

The scenario is this: I need to automatically store in a document the list of all usernames and passwords, but without changing the password, just reading the actual password.

Is this possible or not?

Answer 1

Yes you can for SQL logins.

You read the hashed passwords sys.sql_logins (maybe only via the DAC) and use a tool like NGS SQLCrack.

However, there is almost no requirement ever to keep these in a document.

For Windows based logins, no. The password is in AD.

And read this: "What are the arguments for and against a network policy where the sys admin knows users passwords?"