asked on

change domain pc--local administrator password

I want to change unique password for local administrator password for all domain member machines. Is there any way?

To reset local account by GPO:

You need either Vista or Windows Server 2008, just run Group Policy management and follow the steps to create the GPO:

Computer Configuration>Preferences>Control Panel>right-click Local Users and Groups, from the menu select New-Local User. Select Update as the action, type Administrator into the User name text box, then type the new password into the Password text box, confirming the password in Confirm Password text box. Press OK.

Don

read here

How to change the password for the local administrator account on multiple machines (the easy way without scripting)

ASKER CERTIFIED SOLUTION

Dhiraj Mutha

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial

Don

Why would anyone in their right mind use a cleartext script with a password in it to change passwords? Basically defeats the purpose of the password in the first place IMHO.

Dhiraj Mutha

The script can be encoded.

Don

I prefer to take advantage of group policy, that's what its there for. :-)

Mike Kline

Yes the scripts can be encoded but I like the safety with preferences
http://blogs.technet.com/grouppolicy/archive/2008/08/04/passwords-in-group-policy-preferences.aspx

Are passwords in preference items secure?
Passwords in Group Policy preference items are protected using 256-bit AES encryption. In the XML source code of a preference item, the password does not appear as clear text; it is encrypted. The client reads the XML, decrypts the password, and implements the configuration.
Thanks
Mike