We are independent & ad-supported. We may earn a commission for purchases made through our links.
EasyTechJunkie
Advertiser Disclosure
Our website is an independent, advertising-supported platform. We provide our content free of charge to our readers, and to keep it that way, we rely on revenue generated through advertisements and affiliate partnerships. This means that when you click on certain links on our site and make a purchase, we may earn a commission. Learn more.
How We Make Money
We sustain our operations through affiliate commissions and advertising. If you click on an affiliate link and make a purchase, we may receive a commission from the merchant at no additional cost to you. We also display advertisements on our website, which help generate revenue to support our work and keep our content free for readers. Our editorial team operates independently of our advertising and affiliate partnerships to ensure that our content remains unbiased and focused on providing you with the best information and recommendations based on thorough research and honest evaluations. To remain transparent, we’ve provided a list of our current affiliate partners here.
Security

Our Promise to you

Founded in 2002, our company has been a trusted resource for readers seeking informative and engaging content. Our dedication to quality remains unwavering—and will never change. We follow a strict editorial policy, ensuring that our content is authored by highly qualified professionals and edited by subject matter experts. This guarantees that everything we publish is objective, accurate, and trustworthy.

Over the years, we've refined our approach to cover a wide range of topics, providing readers with reliable and practical advice to enhance their knowledge and skills. That's why millions of readers turn to us each year. Join us in celebrating the joy of learning, guided by standards you can trust.

What is the Security Accounts Manager?

M. McGee
By
Updated: May 16, 2024

The Security Accounts Manager is the part of the Windows® operating system that verifies account passwords. The passwords stored by this system are encoded using a hashing algorithm. Since the hash only encodes in one direction, the passwords are relatively safe if an unauthorized user finds them. The Security Accounts Manager is built into the system’s registry and it's files are directly monitored by the kernel, making it difficult to tamper with or change the associated information. While this system is safe from most basic attacks, it has received several criticisms due to a select group of security failures.

The main function of the Security Accounts Manager is holding onto the passwords used to log into Windows® accounts. This system only holds those passwords; other system passwords are held in unrelated areas. The manager is used by the operating system to verify that the entered passwords are the correct ones.

When a user creates an account password, the system sends it through a hash algorithm. This process converts the password into numbers and then runs those numbers through an equation. The output of the equation is a string of numbers that bears no resemblance to the original password. Windows will then completely remove any traces of the original password, leaving only the numbers behind.

When a user enters his password, the process repeats itself. The Security Accounts Manager contains the final string of numbers, which are compared to the converted password. If the numbers match, the user can log in; if they don’t, the system returns an invalid password error.

The security for the Security Accounts Manager is about as tight as it can be. The processes that govern the system are built directly into the operating system’s registry. This is common for most inherent systems, but it does make tampering with them more difficult. The real security comes from the system’s kernel. As soon as it activates, the kernel takes possession of the Security Accounts Manager files and holds them for as long as it runs. This makes it extremely difficult to move or copy the files.

The system isn’t foolproof and there are a number of ways to fool the kernel into giving up the files. The most common methods involve mounting the Windows® installation onto a virtual system. The kernel is more easily controlled during the emulation and it is possible to copy the files. It is also possible to cause a computer error, commonly called a blue screen, that dumps the active memory to a file. This dump contains the information from the Security Accounts Manager.

EasyTechJunkie is dedicated to providing accurate and trustworthy information. We carefully select reputable sources and employ a rigorous fact-checking process to maintain the highest standards. To learn more about our commitment to accuracy, read our editorial process.
M. McGee
By M. McGee
Mark McGee is a skilled writer and communicator who excels in crafting content that resonates with diverse audiences. With a background in communication-related fields, he brings strong organizational and interpersonal skills to his writing, ensuring that his work is both informative and engaging.
See our Editorial Process Share Feedback

Related Articles

Discussion Comments
M. McGee
M. McGee
Mark McGee is a skilled writer and communicator who excels in crafting content that resonates with diverse audiences....
Learn more
Share
https://www.easytechjunkie.com/what-is-the-security-accounts-manager.htm
EasyTechJunkie, in your inbox

Our latest articles, guides, and more, delivered daily.

EasyTechJunkie, in your inbox

Our latest articles, guides, and more, delivered daily.