It's quite common to need to connect to a wireless network from a new device but have lost the access key. Users often wonder if they can retrieve the saved key from the system without full access rights to manage the computer. The standard Windows settings interface often hides the symbols with asterisks, requiring administrator permissions to display them.
Fortunately, the operating system stores connection data in specific profiles, which can sometimes be accessed through standard command line utilities. Command line (cmd) is a powerful tool that allows you to interact with network interfaces at a low level. Even without superuser privileges, built-in commands can display the necessary data, unless security policy has blocked that specific request.
In this guide, we'll cover the technical nuances of working with network profiles and methods for bypassing interface limitations. We'll also explore how to use standard Windows tools to display hidden characters. Operating system interface may change depending on the version, but the basic commands have remained the same for many years.
It's worth noting that the success of this method depends on the current Group Policy configuration in your organization or home network. If the system administrator has strictly restricted access to network utilities, standard methods may not work. However, in most home scenarios and standard Windows installations, the command line method remains effective.
Using the command line to extract the key
The most reliable way to obtain information about saved networks is to use the built-in Netsh utility. This tool allows you to manage network settings using text commands. To get started, you'll need to launch the console, even if you don't have administrator rights, as the view command is often available to standard users.
First, you need to open the command window. To do this, press the key combination Win + R and enter cmdIn the black window that appears, enter the command to view all saved WiFi profiles. This will display a list of all networks your computer has ever connected to.
netsh wlan show profiles
After running the command, you'll see a list of profile names. Find the name of the network you need to find the password for. Next, use the extended command by adding the profile name and keyword. key=clearThis parameter forces the system to display the security key in clear text if the current user has the rights to do so.
In the results, look for the line "Key Content" (or "Key Content" in the English version). The password you are looking for will be listed next to it. Please note that command syntax must be followed exactly, including quotation marks if there are spaces in the network name.
⚠️ Warning: If you receive a "Request not supported" or "Access denied" message after entering the command, your organization's security policies or system settings block standard users from reading security keys.
Method with netsh This is standard for all versions of Windows since Vista. It doesn't require any additional software. The key is to enter the profile name correctly, as the system is case-sensitive and space-sensitive.
Alternative method via PowerShell
If the classic command line is unavailable or not working correctly for some reason, you can use a more modern tool - PowerShellThis shell provides advanced system management capabilities and often has different default permissions settings.
Launch PowerShell from the Start menu or search bar. Unlike cmd, commands here may be longer, but they are more logical. You can use the same command to list profiles. netsh, since PowerShell supports its execution, or use native cmdlets if they are configured.
However, the most universal approach in PowerShell remains calling the same utility netsh with output parameters. Enter the following structure, replacing "Network_Name" with the actual name of your WiFi:
netsh wlan show profile name="Network_Name" key=clear
PowerShell's advantage is its ability to copy text. You can highlight the command output, copy it, and paste it into a text editor for easy reading. This is especially useful if the command output is very long and contains a lot of technical information about encryption types and channels.
You can also use the command in PowerShell Get-NetConnectionProfile, but it only shows the status of the current connection (private or public network) and does not display passwords. Therefore, for our task key extraction It's better to stick to a proven method with netsh.
Checking through the Windows 10 and 11 graphical interface
In modern versions of the operating system, Microsoft has implemented improvements to the settings interface that sometimes allow you to view the password without complex commands, but only for the active network. If your computer is currently connected to WiFi, try the following steps.
Go to the Settings menu (the gear icon in the Start menu) and select Network & Internet. The interface may differ depending on your OS version. In Windows 11, select Advanced network settings or Properties for your active connection.
In the network properties window that opens, scroll down until you find the "Network security key" field. Some Windows builds may have a "Copy" button or an eye icon next to this field, allowing you to see the symbols. If there's no such button and the field is hidden by asterisks, proceed to the next step.
Try right-clicking the password entry field (if it's editable) and selecting "Show characters." However, the system will often prompt you to confirm your administrator account at this point. If the elevation prompt doesn't appear and the password isn't displayed, the graphical method is blocked.
| Method | Admin rights required | Works for active network | Works for saved networks |
|---|---|---|---|
| Command line (netsh) | Often no | Yes | Yes |
| Windows Settings (GUI) | Yes (usually) | Yes | No |
| Control Panel | Yes | Yes | No |
Peculiarities of working in a corporate environment
In offices and large organizations, access to network settings is often regulated by Group Policy. System administrators intentionally restrict the capabilities of standard users to prevent corporate data leakage or the connection of unauthorized devices.
If you are working on a corporate laptop, trying to use commands netsh may be blocked at the executable file level. In this case, the system will simply prevent the console from launching or will return a resource access error. This is normal behavior for secure perimeters.
In such cases, there is no single legal way to find out the password without contacting the IT department. Attempts to bypass these restrictions using third-party software may be considered a violation of the information resource use policy by the security service.
⚠️ Warning: In a corporate environment, using third-party password recovery programs (such as WirelessKeyView) may trigger antivirus systems and be recorded as an information security incident.
It is also worth considering that corporate networks often use the protocol 802.1x for authorization. In this case, the WiFi password itself may not be used for each device separately, and login is performed using the domain username and password. Extracting such credentials using standard methods is impossible.
Third-party utilities and their limitations
There are many programs that can display saved passwords. The most famous of them are WirelessKeyView, WiFi Password Decryptor and similar programs. However, their operation on a computer without administrator rights is extremely limited.
Most of these snails require elevated privileges to perform deep registry and memory scans. Without them, they can only reveal network names, not encryption keys. Furthermore, running executable files (.exe) on someone else's computer without permission is often blocked by antivirus software.
Using portable versions of programs also doesn't guarantee success. The Windows operating system strictly controls access to the credential store (Credential Manager). Even if the program runs, it will encounter the same API protection as the command line.
Why don't programs work without permissions?
The operating system marks stored WiFi keys as secure data. To access them, a process must have a special security token, which is typically issued only to administrators or system services.
Moreover, downloading such utilities from untrusted websites carries the risk of infecting your computer with malware. Trojans are often distributed under the guise of "password recovery tools." It's better to use built-in Windows tools, which are safe and don't require installation.
What to do if none of the methods helped
If the command line returns an access error, the graphical interface requires an administrator password, and third-party programs fail to launch, then the system's security settings are set to the maximum level. In this case, software extraction of the key from this specific computer is impossible.
The only remaining options are physical ones. If you have access to the router itself, you can look at the password on the sticker on the bottom of the device (if it hasn't been changed) or connect to it via a LAN cable. The password can also often be found on other devices, such as an Android smartphone (versions 10 and above allow you to generate a QR code with the password) or an iPhone.
On Android, go to WiFi settings, tap the gear icon next to the network, and select "Share" or the QR code icon. The password is often written underneath the barcode, or you can scan it with another phone's camera. This is the easiest way to "send" a password to a PC without typing.
As a last resort, if you own the router, you can reset it to factory settings. This will restore the default password found on the sticker, but will require reconfiguring all devices on the network.
☑️ Alternative ways to gain access
Frequently Asked Questions (FAQ)
Is it possible to find out a WiFi password if the computer has never connected to this network before?
No, this is technically impossible. The computer only stores the passwords previously entered for a successful connection. If the device doesn't know the password, it can't guess it or pluck it out of thin air. To connect, you'll need to enter the key manually.
Will the password be visible in the command line if the network uses WPA3 encryption?
Yes, the method with the command netsh wlan show profile Works regardless of the encryption type (WEP, WPA2, WPA3). Encryption protects data transmission over the air, but the password is stored on the computer in decoded form for automatic connection, and the utility simply reads it from memory.
Why does the netsh command say "Request not supported"?
This message often appears in two situations: either you entered the profile name incorrectly (it needs an exact match, including spaces), or your wireless driver does not support this command (occurs on very old adapters), or, most likely, your user rights are restricted by Group Policy.
Is the command history saved if I used cmd?
Yes, Windows can save command history in the current session buffer. To clear the history after working, you can close the Command Prompt window. For a more thorough clearing of PowerShell history, you can use the command Clear-History, although in the context of a one-time password viewing this is not critical from a security point of view.