Microsoft Edge lost all my passwords after logging in to computer on domain controller

[shovenose]

The new year really isn't going well. First my car's window broke and now Microsoft Edge lost all my saved passwords. All my bookmarks are still there but all my saved passwords disappeared. I use the sync feature across Edge on my desktop, laptop, and iPhone. All those devices show none of the saved passwords, just the like half a dozen I've added back in today.

The only thing I can think of is I signed into my Microsoft account on a computer attached to a domain controller at a friends place last night. I think that's when the issue must have happened. Because I was using my stored passwords on my laptop right before I did that. Sadly, I can not say for sure that was it because after I signed in on that computer I did not use my laptop again until this morning.

At this point, I'm irritated and if my passwords are gone I'll take this opportunity to switch to Firefox. But before I do all that I'd just love to see if anyone knows WHY this suddenly happened? And if I can get my passwords back somehow? Sadly I don't think I have any other devices that haven't synced yet that I could recover my passwords from.

 

[thesmokingman]

On a DC, you at work?

That said, I would never use Edge. With FF you can backup your whole profile easily. With Edge its a freaking huge PITA with not much options.

 

[Solaris17]

I do all that I'd just love to see if anyone knows WHY this suddenly happened?

I mean you hit it on the head. The machine likely has GPOs set so this can’t happen specifically to avoid password sharing of corporate stuff. It’s part of STIGS, run books, and otherwise just general practice because it’s low hanging fruit for corporations. Nothing wrong with it either to be honest. I know you are angry but before the thread turns into a “corporation bad” witch-hunt you really shouldn’t ever login to personal things or install personal apps or really expect any kind of privacy when logging into a corporate environment. They have full right to do whatever they want to machines on there network; including killing any saved passwords it finds on user systems.

mad for getting it all back, if you have a backup you could restore it to an offline machine and try a manual export.

 

[dgianstefani]

I mean you hit it on the head. The machine likely has GPOs set so this can’t happen specifically to avoid password sharing of corporate stuff. It’s part of STIGS, run books, and otherwise just general practice because it’s low hanging fruit for corporations. Nothing wrong with it either to be honest. I know you are angry but before the thread turns into a “corporation bad” witch-hunt you really shouldn’t ever login to personal things or install personal apps or really expect any kind of privacy when logging into a corporate environment. They have full right to do whatever they want to machines on there network; including killing any saved passwords it finds on user systems.

mad for getting it all back, if you have a backup you could restore it to an offline machine and try a manual export.

Further to that Edge is the built in browser that's tied into the OS, so any group policy etc will apply to it much more than any third party browser, which could get reset, but your logins would be tied to the cloud account not any local storage.

I doubt this would have happened if you were using the Chrome password manager or another browser other than Edge, which doesn't have much going for it.

 

[Frick]

I mean you hit it on the head. The machine likely has GPOs set so this can’t happen specifically to avoid password sharing of corporate stuff. It’s part of STIGS, run books, and otherwise just general practice because it’s low hanging fruit for corporations. Nothing wrong with it either to be honest. I know you are angry but before the thread turns into a “corporation bad” witch-hunt you really shouldn’t ever login to personal things or install personal apps or really expect any kind of privacy when logging into a corporate environment. They have full right to do whatever they want to machines on there network; including killing any saved passwords it finds on user systems.

mad for getting it all back, if you have a backup you could restore it to an offline machine and try a manual export.

This would be one of those cases where I would want Microsoft to be even more online and intrusive so that it would trigger a warning or something when attempting stuff like this. How the shit am I as an avarege joe supposed know any of this, or what "policies" is when applied to computers?

Anyway, Bitwarden is cool.

 

[kilo]

Chrome and FF have GPO's the same as Edge.

KeePass or Password Safe are great password managers to use as a substitute.

 

[dgianstefani]

This would be one of those cases where I would want Microsoft to be even more online and intrusive so that it would trigger a warning or something when attempting stuff like this. How the shit am I as an avarege joe supposed know any of this, or what "policies" is when applied to computers?

Anyway, Bitwarden is cool.

Yep, Bitwarden is the only good third party password manager.

 

[Frick]

KeePass or Password Safe are great password managers to use as a substitute.

Not if you want access from any device.

 

[shovenose]

So it sounds like I'm screwed and logging into the domain controlled computer wiped all my passwords with no warning.

 

[Solaris17]

So it sounds like I'm screwed and logging into the domain controlled computer wiped all my passwords with no warning.

Yeah, par for the course, warnings arent necissary. It really just should be that obvious. Unless you have worked fast food or retail your entire life or for a corporation that doesnt handle IT well this was never any surprise. This is part of every system access request known to man for new hires.

They can also

- Read your email
- Remotely watch your machine
- Intercept your DNS and entwoork traffic
- Pull logs for anything on the system
- Remove any 3rd party application installed on the machine
- Request transcribitions from the company in question of those third party tools if they belive information has been exfiltrated
- Wipe the machine at any point
- Lock the machine at any point
- Track the physical location of the device at any point

among others.

Infact logging into ANY kind of personal account or using third party apps is STRICTLY forbidden even with BYOD if you are using a corporate image.

We could blame MS as much as people want, but Linux LDAP lets you do all the same things.

 

[windwhirl]

I doubt this would have happened if you were using the Chrome password manager or another browser other than Edge, which doesn't have much going for it.

Depends on whether the admins bothered. Chrome and Firefox both have a way to integrate with Group Policy, though how far and how much you can police with GP might not be as great as with Edge/IE

Customize Firefox using Group Policy (Windows) | Firefox for Enterprise Help

Firefox supports setting policies via Active Directory as well as using Local Group Policy.

support.mozilla.org

Set Chrome browser policies on managed PCs - Chrome Enterprise and Education Help

Applies to managed Chrome browsers on Windows, Mac, and Linux. This page is for IT admins who want to use on-premise tools to set Chrome policies on corporate-managed computers. After Chrome br

support.google.com

EDIT: lol, I just realized someone else commented the same thing *facepalm

 

[ThrashZone]

I use the sync feature across Edge on my desktop, laptop, and iPhone. All those devices show none of the saved passwords, just the like half a dozen I've added back in today.

Hi,
Yeah sync is the issue not anything else
Well that and no backup