[marc.langman]

I've been told that the "save password" option in Enterprise Messenger for LCS cannot be disabled and saves the user's password in the device key store. This password, of course, is the user's domain password.

Can someone please give me some information on the security of the device key store? Is there a way for an intruder, who has physical access to the device, to grab that key store and open it to view the domain password? The same goes for someone who doesn't have physical access to the device.

Not sure if it matters but we have a wide variety of devices such as the 8700, 8100, and 7130. The software for the devices is the newest available from the respective providers.

Any help would be appreciated. Thanks.