Hello all, first time posting here. Hoping someone can provide some insight.<\/p>\n
I have a break/fix user with a Windows 11 laptop who has forgotten her password. Her’s is the only local account so no other users to login with. Normally in these cases I would use HirenBoot and reset from there. Problem is Bitlocker is turned on so the drive is not accessible from HirenBoot. The computer came with BitLocker turned on and the recovery key was never printed out so nobody has it, and since it’s a local account the key cannot be found in the MS account she uses.<\/p>\n
Thankfully it’s not stuck where it requires the BitLocker key so there’s still the chance we can guess/crack the password. Would anyone have any suggestions for tools we could use to try to bruteforce the password?<\/p>","upvoteCount":5,"answerCount":20,"datePublished":"2024-08-27T15:29:15.626Z","author":{"@type":"Person","name":"OSIHelp","url":"https://community.spiceworks.com/u/OSIHelp"},"suggestedAnswer":[{"@type":"Answer","text":"
Hello all, first time posting here. Hoping someone can provide some insight.<\/p>\n
I have a break/fix user with a Windows 11 laptop who has forgotten her password. Her’s is the only local account so no other users to login with. Normally in these cases I would use HirenBoot and reset from there. Problem is Bitlocker is turned on so the drive is not accessible from HirenBoot. The computer came with BitLocker turned on and the recovery key was never printed out so nobody has it, and since it’s a local account the key cannot be found in the MS account she uses.<\/p>\n
Thankfully it’s not stuck where it requires the BitLocker key so there’s still the chance we can guess/crack the password. Would anyone have any suggestions for tools we could use to try to bruteforce the password?<\/p>","upvoteCount":5,"datePublished":"2024-08-27T15:29:15.731Z","url":"https://community.spiceworks.com/t/windows-11-local-account-password/1110437/1","author":{"@type":"Person","name":"OSIHelp","url":"https://community.spiceworks.com/u/OSIHelp"}},{"@type":"Answer","text":"
If you have the password to the administrator account, can you boot into safe mode and log in with that and reset her password? Or did she ever configure her security questions for password recovery?<\/p>","upvoteCount":2,"datePublished":"2024-08-27T15:34:48.391Z","url":"https://community.spiceworks.com/t/windows-11-local-account-password/1110437/2","author":{"@type":"Person","name":"norriii","url":"https://community.spiceworks.com/u/norriii"}},{"@type":"Answer","text":"
If the laptop is one of the new CoPilot PCs, bitlocker is enabled by default, as it is with some OEM Dell, under certain conditions.<\/p>\n
W11 24H2 will also enable Bitlocker by default.<\/p>\n
Generally though these use MS accounts, so the recovery key should be in their MS account.<\/p>\n
Apart from the login prompt, where else can you get to?<\/p>","upvoteCount":4,"datePublished":"2024-08-27T15:41:32.192Z","url":"https://community.spiceworks.com/t/windows-11-local-account-password/1110437/3","author":{"@type":"Person","name":"Rod-IT","url":"https://community.spiceworks.com/u/Rod-IT"}},{"@type":"Answer","text":"
Any management \\ AV tools installed on the laptop that would give you access to a command prompt?<\/p>","upvoteCount":2,"datePublished":"2024-08-27T16:33:35.860Z","url":"https://community.spiceworks.com/t/windows-11-local-account-password/1110437/4","author":{"@type":"Person","name":"molan","url":"https://community.spiceworks.com/u/molan"}},{"@type":"Answer","text":"
Are there other accounts on the computer? With Admin privileges?<\/p>\n
Pretty sure Win 11 has lockout policies enabled by default - 10 wrong guesses within 10 minutes, lock for 10 minutes. Brute force may not be possible/practical.<\/p>\n
Also pretty sure that user is going to have to remember their password, if there’s no other admin account to do a password reset - you’re not going to defeat BitLocker easily, if at all.<\/p>","upvoteCount":1,"datePublished":"2024-08-27T18:11:55.713Z","url":"https://community.spiceworks.com/t/windows-11-local-account-password/1110437/5","author":{"@type":"Person","name":"phildrew","url":"https://community.spiceworks.com/u/phildrew"}},{"@type":"Answer","text":"
Unfortunately the local admin is not enabled and there are no other users other than the customer’s. Looks like no security questions either, when i try the password reset prompt the only option i get is to use a password reset disk, which we also don’t have<\/p>","upvoteCount":1,"datePublished":"2024-08-27T20:25:52.688Z","url":"https://community.spiceworks.com/t/windows-11-local-account-password/1110437/6","author":{"@type":"Person","name":"OSIHelp","url":"https://community.spiceworks.com/u/OSIHelp"}},{"@type":"Answer","text":"
This one was set up back when you still got the option to set up as a local account as opposed to an MS account, so it was never added to her MS account<\/p>","upvoteCount":1,"datePublished":"2024-08-27T20:27:25.136Z","url":"https://community.spiceworks.com/t/windows-11-local-account-password/1110437/7","author":{"@type":"Person","name":"OSIHelp","url":"https://community.spiceworks.com/u/OSIHelp"}},{"@type":"Answer","text":"
No other accounts unfortunately.<\/p>\n
You’re correct on the lockout policy, and let her know the same that she would have to remember the password somehow. There’s at least that chance<\/p>","upvoteCount":1,"datePublished":"2024-08-27T20:29:24.722Z","url":"https://community.spiceworks.com/t/windows-11-local-account-password/1110437/8","author":{"@type":"Person","name":"OSIHelp","url":"https://community.spiceworks.com/u/OSIHelp"}},{"@type":"Answer","text":"