Need script to change Local Admin password on all workstations - Logon Script?

I am looking for a script to push out from my Active Directory to all workstations that will change the Local Administrator password on the machines.  I am in the process of locking down about 300 workstations and need to get this changed ASAP since some users are causing havoc.

Anyone know where I could find a tool that would do the trick?  Possibly something I could push out as a logon script?

Thanks!
jetskimdAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

SamuraiCrowCommented:
Here is some good info on using cusrmgr.exe to accomplish this task

http://www.winnetmag.com/Windows/Article/ArticleID/24210/24210.html
0
PKundtzCommented:
Here's a one-liner batch script you can set as a start-up script in the Machine policy:

net user administrator password

I rename my local administrator accounts as an extra security measure.  Here's another script to use if you want to use another admin account:

net user admin2 password
if %ERRORLEVEL% == 2 goto CREATE
goto end

:CREATE
net user admin2 /add password
net localgroup administrators /add admin2
goto END

:END
exit
0
oBdACommented:
Do you have the W2k Resource Kit (namely local.exe, getsid.exe, and cusrmgr.exe; note that cusrmgr.exe is not part of the free downloadable W2k3 ResKit)? I have a script here that remotely renames on a list machines the built-in account (even if renamed to an unknown name), changes the password, and lists other users with administrative permissions; this requires the tools above, though.
0
Acronis True Image 2019 just released!

Create a reliable backup. Make sure you always have dependable copies of your data so you can restore your entire system or individual files.

Pete LongTechnical ConsultantCommented:
Change All Local Admin Passwords


Change Local Administrator Password Remotely
 

Download the utility 'cryptpwd' from :
http://www.jsiinc.com/dl/cryptpwd.zip

Now just create a text file containing all your server names
(e.g. serverlist.txt) and then create a batch file with the following line :

FOR /F %%x in (serverlist.txt) do cryptpwd -m \\%%x -P newpassword

(where newpassword is the password you want to set as the
local administrator password on the servers.)

(You obviously need to have admin. rights to the servers in order
to change the password.)

This method changes the password immediately.


From http://infocenter.cramsession.com/TechLibrary/GetHtml.asp?ID=1373&CatID=267

For a VB Solution see http://www.experts-exchange.com/Security/Win_Security/Q_20946526.html
http://www.microsoft.com/technet/community/scriptcenter/user/scrug74.mspx
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Pete LongTechnical ConsultantCommented:
ThanQ
0
chrisjasperCommented:
Another solution is to download the freeware Quest central from quest.com, under the AD portion of the mamnagement tools you can select computers and invoke the Change Local Administrator password wizard.
0
sanchito_75Commented:
If you want to make it even go to this url:
http://www.systemtools.com/hyena/download_frame.htm

Download and install HYENA network tools. This is what I use to change hundred of workstations local password in minutes. No scripts just an easy to use GUI. If you like it and need a quick how to I will help you. Good luck
0
sanchito_75Commented:
ooops... Sorrry I meant make it easier go to this url... I am an newbie as you can tell.
0
jrod7290Commented:
Sanchito,
How would you use to Hyena to change the passwords on muliple workstations?
0
sanchito_75Commented:
open up Hyena-->Open up enterprise---> Right click all computers--->Click view all computers--> On the left side select the computer types and choose windows nt and windows 95. On the rights side where is says function  choose workstation and click ok.

Hyena will then enumerate a list of all workstations in your AD/NT domain. Once the list is completed all the computers(workstations) will appear on the right side. Select all computers using CTRL A and then right click on any one of the computers.

Select more functions and choose set account password and choose the password you want. This will change the password for all workstations.
GOOD LUCK!
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2003

From novice to tech pro — start learning today.