?
Solved

change domain pc--local administrator password

Posted on 2009-03-31
7
Medium Priority
?
586 Views
Last Modified: 2012-05-06
I want to change unique password for local administrator password for all domain member machines. Is there any way?
0
Comment
Question by:Komal_Upadhyay
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
7 Comments
 
LVL 18

Expert Comment

by:Americom
ID: 24036002
To reset local account by GPO:

You need either Vista or Windows Server 2008, just run Group Policy management and follow the steps to create the GPO:

Computer Configuration>Preferences>Control Panel>right-click Local Users and Groups, from the menu select New-Local User. Select Update as the action, type Administrator into the User name text box, then type the new password into the Password text box, confirming the password in Confirm Password text box. Press OK.
0
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 24036009
0
 
LVL 14

Accepted Solution

by:
Dhiraj Mutha earned 2000 total points
ID: 24036019
Save the below code as .vbs and run it from GPO on all the systems.
'This Script will chage the Local Administrators (Administrator) Password.
 
' ------ SCRIPT START ------
 
strComputer = "."
Set objUser = GetObject("WinNT://" & strComputer & "/administrator, user")
 
objUser.SetPassword "Password Here"
objUser.SetInfo
 
' ------ SCRIPT END ------	

Open in new window

0
Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 
LVL 47

Expert Comment

by:Donald Stewart
ID: 24036034
Why would anyone in their right mind use a cleartext script with a password in it to change passwords? Basically defeats the purpose of the password in the first place IMHO.
0
 
LVL 14

Expert Comment

by:Dhiraj Mutha
ID: 24036044
The script can be encoded.
0
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 24036056
I prefer to take advantage of group policy, that's what its there for. :-)
0
 
LVL 57

Expert Comment

by:Mike Kline
ID: 24036499
Yes the scripts can be encoded but I like the safety with preferences
http://blogs.technet.com/grouppolicy/archive/2008/08/04/passwords-in-group-policy-preferences.aspx

Are passwords in preference items secure?
Passwords in Group Policy preference items are protected using 256-bit AES encryption. In the XML source code of a preference item, the password does not appear as clear text; it is encrypted. The client reads the XML, decrypts the password, and implements the configuration.

Thanks
Mike
0

Featured Post

Ransomware: The New Cyber Threat & How to Stop It

This infographic explains ransomware, type of malware that blocks access to your files or your systems and holds them hostage until a ransom is paid. It also examines the different types of ransomware and explains what you can do to thwart this sinister online threat.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Recently, Microsoft released a best-practice guide for securing Active Directory. It's a whopping 300+ pages long. Those of us tasked with securing our company’s databases and systems would, ideally, have time to devote to learning the ins and outs…
Microsoft Office 365 is a subscriptions based service which includes services like Exchange Online and Skype for business Online. These services integrate with Microsoft's online version of Active Directory called Azure Active Directory.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question