I've attempted to liveboot a few password recovery tools via cd boot but they don't seem to work (it's probably me using them incorrectly). I've attempted to map the drive to my host machine to crack hashes from the SAM file locally/offline but the SAM file requires specific permissions that I do not have on the host machine. I feel like there are additional security protections in place with this being a domain controller, something I do not have experience with in terms of forensics and recovery. Is there an easy path to recovering the passwords for both accounts or even retrieving the hashes of those passwords?