This smells a taaadddd fishy.

#1, Any Network.Sys admin should know AT LEAST one way to reset a password without resorting to hacking the password at all using the XP CD.

#2 Combining it with the previous question you asked about Gmail accounts throws up some red flags.  I'm not here to help someone hack into boxes (regardless on how secure they are) and I don't think many people here are either.  If you want answers on how to hack into systems, use IRC.

Those two points combined with the general demeanor of your posts makes me not want to deal with you at all.  If you want my advice, find someone to replace you at your job.  Someone that is competent.

On the other hand, this may just be a troll. 

No offense taken what-so-ever.  That's what these forums are for.  I don't claim to be an expert on the laws of the land (or even savvy).  I merely speak from personal experience.  I have had to resort to this two times in the past 11 years, and it has served me well.  Granted, we had a blanket disclaimer on all login screens notifying the user of monitoring, and also have them all sign a pretty lengthy Appropriate Use Agreement (which includes a CYA page of monitoring jargon.)

So, when I offered the KL suggestion, I was assuming the individual would be bright enough to check with his/her superiors before implementing anything.

 

Keylog the suspected user's terminal.  This will eliminate any legal issues (I am assuming the terminal and IT equipment is owned by the company)... Keylogging will also eliminate encryption as an obstacle.

Plus, if you AREN'T who you say you are, it will be a little more difficult to install a keylogger and have logs sent to you remotely. Problem Solved.

~Efferri