Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

Is there a built in way in Active directory to force change admin password.?

Posted on 2008-10-29
9
Medium Priority
?
270 Views
Last Modified: 2012-05-05
Hi,

Is there a built in way in Active directory to force change admin password.?
Local Admin
Windows 2003 ADS

Regards
Sharath
0
Comment
Question by:bsharath
  • 5
  • 3
9 Comments
 
LVL 18

Expert Comment

by:sk_raja_raja
ID: 22831502
No, Its not possible.....you have to do it manually.
0
 
LVL 18

Expert Comment

by:sk_raja_raja
ID: 22831518
You can create a gp to force change password,move admin account to a OU and link the policy in that OU...... but i have not tried this and i willl never suggest this for default Administrator account
0
 
LVL 18

Expert Comment

by:sk_raja_raja
ID: 22831538
Why do you actually need this ? any specifc reasons ?
0
Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

 
LVL 11

Author Comment

by:bsharath
ID: 22831869
So the password is not know to all. As the current local Admin password is known to all now.
0
 
LVL 18

Expert Comment

by:sk_raja_raja
ID: 22832763
oh..wait a minute.....

Do you want to change the AD administrator password or the local administrator on the machines connected to the Domain?

If you want to change the local admin password on all the workstations, it is doable with scripts...
0
 
LVL 18

Accepted Solution

by:
sk_raja_raja earned 1600 total points
ID: 22832797
1.Change Local Administrator Passwords [ChgPassword.hta] is a hyper text application (HTA) that will assist you in automatically changing the password on the local administrator account on multiple machines at one time. It is very easy to use, you simply double-click the ChgPassword.hta file to start the application. Next...

    * Enter the NEW admin password
    * Select the target domain (from drop down list)
    * Select the target machines by choosing their parent OU (drop down list)
    * Click the [Change Password] button

http://www.scriptingpod.com/localadmin.asp >

2.Ref this posts for "how to change local admin on workstations"
http://www.experts-exchange.com/Programming/Languages/Visual_Basic/VB_Script/Q_23111276.html
http://www.experts-exchange.com/Programming/Languages/Visual_Basic/VB_Script/Q_23111276.html
http://www.experts-exchange.com/Programming/Languages/Visual_Basic/VB_Script/Q_23111276.html
http://www.experts-exchange.com/Programming/Languages/Visual_Basic/VB_Script/Q_23111276.html
http://www.experts-exchange.com/Programming/Languages/Scripting/Shell/Batch/Q_23568766.html
http://www.experts-exchange.com/Programming/Languages/Visual_Basic/VB_Script/Q_22980901.html

http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Server/2003_Server/Q_22662474.html
0
 
LVL 1

Assisted Solution

by:gfunk9132
gfunk9132 earned 400 total points
ID: 22833715
Sharath,

Working in healthcare we do this on a quarterly basis.  We simply use a start up script for the GPO holding all of the workstations and have a report written to a secured network share that the Domain Computers security group has access to.  See batch file example below - in the example our renamed local admin account is called JEFFATHER:


net user JEFFATHER $$7899Irr# > \\DOMAIN.LOCAL\NETLOGON\ITRPTS\%COMPUTERNAME%.TXT

The output is a changed password and a confirmation to us Admins that in the netlogon share in our IT reports folder a text file named after the computer and the end result which is "The command completed successfully"  
0
 
LVL 11

Author Comment

by:bsharath
ID: 22840848
Thank U
0
 
LVL 11

Author Comment

by:bsharath
ID: 22843550
Congrats on your new Certificate...you earned :-))
0

Featured Post

Restore individual SQL databases with ease

Veeam Explorer for Microsoft SQL Server delivers an easy-to-use, wizard-driven interface for restoring your databases from a backup. No expert SQL background required. Web interface provides a complete view of all available SQL databases to simplify the recovery of lost database

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

After seeing many questions for JRNL_WRAP_ERROR for replication failure, I thought it would be useful to write this article.
Wouldn't it be nice if objects in Active Directory automatically moved into the correct Organizational Units? This is what AutoAD aims to do and as a plus, it automatically creates Sites, Subnets, and Organizational Units.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
Windows 8 came with a dramatically different user interface known as Metro. Notably missing from that interface was a Start button and Start Menu. Microsoft responded to negative user feedback of the Metro interface, bringing back the Start button a…
Suggested Courses

581 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question