Link to home
Start Free TrialLog in
Avatar of Petrofac_ITlogmein
Petrofac_ITlogmeinFlag for United Arab Emirates

asked on

Script for finding blank local admin passwords

Guys...I need to investigate the workstations (Windows 2000/XP) which have been doled out to the users without assigning a passsword to Local administrator account.

Bereft of SMS or any such tool, I guess it's not going to be an easy job.

Anyone, got any script to run for such an invetigative procedure throughout my LAN?
Avatar of PowerIT
PowerIT
Flag of Belgium image

If those machines are member of an Active Directory Domain then you can scan them with MBSA (Microsoft Baseline Security Analyzer). MBSA does not flag empty passwords on empty local passwords when the machines are in a workgroup, so hopefully you are in a domain.

http://www.microsoft.com/technet/security/tools/mbsa2/default.mspx

J.
Oops, serious type. The second sentence should have read:
MBSA does not flag empty local passwords when the machines are in a workgroup, so hopefully you are in a domain.


J.
Avatar of Petrofac_ITlogmein

ASKER

Thanks PowerIT, this is nice! Yes..the machines are part of an AD domain.
Related...can I also assign a password to local admin account, if found empty, using some utility or I'll have to visit the PCs physical location?
ASKER CERTIFIED SOLUTION
Avatar of PowerIT
PowerIT
Flag of Belgium image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial