Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 3135
  • Last Modified:

Need script to change Local Admin password on all workstations - Logon Script?

I am looking for a script to push out from my Active Directory to all workstations that will change the Local Administrator password on the machines.  I am in the process of locking down about 300 workstations and need to get this changed ASAP since some users are causing havoc.

Anyone know where I could find a tool that would do the trick?  Possibly something I could push out as a logon script?

Thanks!
0
jetskimd
Asked:
jetskimd
1 Solution
 
SamuraiCrowCommented:
Here is some good info on using cusrmgr.exe to accomplish this task

http://www.winnetmag.com/Windows/Article/ArticleID/24210/24210.html
0
 
PKundtzCommented:
Here's a one-liner batch script you can set as a start-up script in the Machine policy:

net user administrator password

I rename my local administrator accounts as an extra security measure.  Here's another script to use if you want to use another admin account:

net user admin2 password
if %ERRORLEVEL% == 2 goto CREATE
goto end

:CREATE
net user admin2 /add password
net localgroup administrators /add admin2
goto END

:END
exit
0
 
oBdACommented:
Do you have the W2k Resource Kit (namely local.exe, getsid.exe, and cusrmgr.exe; note that cusrmgr.exe is not part of the free downloadable W2k3 ResKit)? I have a script here that remotely renames on a list machines the built-in account (even if renamed to an unknown name), changes the password, and lists other users with administrative permissions; this requires the tools above, though.
0
Restore individual SQL databases with ease

Veeam Explorer for Microsoft SQL Server delivers an easy-to-use, wizard-driven interface for restoring your databases from a backup. No expert SQL background required. Web interface provides a complete view of all available SQL databases to simplify the recovery of lost database

 
Pete LongConsultantCommented:
Change All Local Admin Passwords


Change Local Administrator Password Remotely
 

Download the utility 'cryptpwd' from :
http://www.jsiinc.com/dl/cryptpwd.zip

Now just create a text file containing all your server names
(e.g. serverlist.txt) and then create a batch file with the following line :

FOR /F %%x in (serverlist.txt) do cryptpwd -m \\%%x -P newpassword

(where newpassword is the password you want to set as the
local administrator password on the servers.)

(You obviously need to have admin. rights to the servers in order
to change the password.)

This method changes the password immediately.


From http://infocenter.cramsession.com/TechLibrary/GetHtml.asp?ID=1373&CatID=267

For a VB Solution see http://www.experts-exchange.com/Security/Win_Security/Q_20946526.html
http://www.microsoft.com/technet/community/scriptcenter/user/scrug74.mspx
0
 
Pete LongConsultantCommented:
ThanQ
0
 
chrisjasperCommented:
Another solution is to download the freeware Quest central from quest.com, under the AD portion of the mamnagement tools you can select computers and invoke the Change Local Administrator password wizard.
0
 
sanchito_75Commented:
If you want to make it even go to this url:
http://www.systemtools.com/hyena/download_frame.htm

Download and install HYENA network tools. This is what I use to change hundred of workstations local password in minutes. No scripts just an easy to use GUI. If you like it and need a quick how to I will help you. Good luck
0
 
sanchito_75Commented:
ooops... Sorrry I meant make it easier go to this url... I am an newbie as you can tell.
0
 
jrod7290Commented:
Sanchito,
How would you use to Hyena to change the passwords on muliple workstations?
0
 
sanchito_75Commented:
open up Hyena-->Open up enterprise---> Right click all computers--->Click view all computers--> On the left side select the computer types and choose windows nt and windows 95. On the rights side where is says function  choose workstation and click ok.

Hyena will then enumerate a list of all workstations in your AD/NT domain. Once the list is completed all the computers(workstations) will appear on the right side. Select all computers using CTRL A and then right click on any one of the computers.

Select more functions and choose set account password and choose the password you want. This will change the password for all workstations.
GOOD LUCK!
0

Featured Post

Get your problem seen by more experts

Be seen. Boost your question’s priority for more expert views and faster solutions

Tackle projects and never again get stuck behind a technical roadblock.
Join Now