Solved

Is there a built in way in Active directory to force change admin password.?

Posted on 2008-10-29
9
258 Views
Last Modified: 2012-05-05
Hi,

Is there a built in way in Active directory to force change admin password.?
Local Admin
Windows 2003 ADS

Regards
Sharath
0
Comment
Question by:bsharath
  • 5
  • 3
9 Comments
 
LVL 18

Expert Comment

by:sk_raja_raja
ID: 22831502
No, Its not possible.....you have to do it manually.
0
 
LVL 18

Expert Comment

by:sk_raja_raja
ID: 22831518
You can create a gp to force change password,move admin account to a OU and link the policy in that OU...... but i have not tried this and i willl never suggest this for default Administrator account
0
 
LVL 18

Expert Comment

by:sk_raja_raja
ID: 22831538
Why do you actually need this ? any specifc reasons ?
0
 
LVL 11

Author Comment

by:bsharath
ID: 22831869
So the password is not know to all. As the current local Admin password is known to all now.
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
LVL 18

Expert Comment

by:sk_raja_raja
ID: 22832763
oh..wait a minute.....

Do you want to change the AD administrator password or the local administrator on the machines connected to the Domain?

If you want to change the local admin password on all the workstations, it is doable with scripts...
0
 
LVL 18

Accepted Solution

by:
sk_raja_raja earned 400 total points
ID: 22832797
1.Change Local Administrator Passwords [ChgPassword.hta] is a hyper text application (HTA) that will assist you in automatically changing the password on the local administrator account on multiple machines at one time. It is very easy to use, you simply double-click the ChgPassword.hta file to start the application. Next...

    * Enter the NEW admin password
    * Select the target domain (from drop down list)
    * Select the target machines by choosing their parent OU (drop down list)
    * Click the [Change Password] button

http://www.scriptingpod.com/localadmin.asp >

2.Ref this posts for "how to change local admin on workstations"
http://www.experts-exchange.com/Programming/Languages/Visual_Basic/VB_Script/Q_23111276.html
http://www.experts-exchange.com/Programming/Languages/Visual_Basic/VB_Script/Q_23111276.html
http://www.experts-exchange.com/Programming/Languages/Visual_Basic/VB_Script/Q_23111276.html
http://www.experts-exchange.com/Programming/Languages/Visual_Basic/VB_Script/Q_23111276.html
http://www.experts-exchange.com/Programming/Languages/Scripting/Shell/Batch/Q_23568766.html
http://www.experts-exchange.com/Programming/Languages/Visual_Basic/VB_Script/Q_22980901.html

http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Server/2003_Server/Q_22662474.html
0
 
LVL 1

Assisted Solution

by:gfunk9132
gfunk9132 earned 100 total points
ID: 22833715
Sharath,

Working in healthcare we do this on a quarterly basis.  We simply use a start up script for the GPO holding all of the workstations and have a report written to a secured network share that the Domain Computers security group has access to.  See batch file example below - in the example our renamed local admin account is called JEFFATHER:


net user JEFFATHER $$7899Irr# > \\DOMAIN.LOCAL\NETLOGON\ITRPTS\%COMPUTERNAME%.TXT

The output is a changed password and a confirmation to us Admins that in the netlogon share in our IT reports folder a text file named after the computer and the end result which is "The command completed successfully"  
0
 
LVL 11

Author Comment

by:bsharath
ID: 22840848
Thank U
0
 
LVL 11

Author Comment

by:bsharath
ID: 22843550
Congrats on your new Certificate...you earned :-))
0

Featured Post

Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Find out how to use Active Directory data for email signature management in Microsoft Exchange and Office 365.
In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
Windows 8 comes with a dramatically different user interface known as Metro. Notably missing from the new interface is a Start button and Start Menu. Many users do not like it, much preferring the interface of earlier versions — Windows 7, Windows X…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

937 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now