[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 270
  • Last Modified:

Query for a known Admin password

Does anyone know if there is a way to query machines against a known password? For example lets say I have 10 machines that should all have an admin pass of "password". I'm wondering if there is way to query the machines (preferably WMI) and ask is "password" your password and have the machines return a true or false.

Possible?

I would like to use this to try and create an SCCM collection based on machines that do NOT have the correct password, so that I can update them.

Thanks,
Mike
0
PAdocIT
Asked:
PAdocIT
3 Solutions
 
merowingerCommented:
No the password cannot be queried. This would be a huge security risk.
You could write a script which tries an action on all Clients. E.g. create a textfile on C:\
Your script tries different passwords and so it returns an "access denied" or "success" for each password and you know which password is configured...
0
 
RobSampsonCommented:
You could also just go ahead and set the password for a specific account, whether it was already correct or not...that wouldn't make any difference.

Rob.
0
 
PAdocITAuthor Commented:
@merowinger: That's interesting idea. I will have to look into that.

@Rob: That's pretty much what happens now. I was just looking for a way to have a visual representation of which machines had the correct password and which didn't.

I figured there was really no way to query the password, however there people here way smarter than me so figured I would throw it out there. :)

Thanks for the responses.
0
[Webinar] Kill tickets & tabs using PowerShell

Are you tired of cycling through the same browser tabs everyday to close the same repetitive tickets? In this webinar JumpCloud will show how you can leverage RESTful APIs to build your own PowerShell modules to kill tickets & tabs using the PowerShell command Invoke-RestMethod.

 
tighecCommented:
If you have a list of machines in a file called machines.txt, you can use the following:

for /F %a in (machines.txt) do net use \\%a\c$ /u:%a\administrator Password || @Echo %a>>BadPassword

It will try to map to the c$ share of each machine, using the administrator account for that machine and the password 'Password'.  If it fails, it will echo out the machine name to txt file 'BadPassword.txt'
0
 
RobSampsonCommented:
So why was the question re-opened?  Did you want to regrade it?  If you're going to use tightec's solution, I'd probably add a bit to remove the mapping as well.

Rob.
0
 
PAdocITAuthor Commented:
Thanks guys. Sorry for the regrade, but I thought it fair to give this one to tighec.

@rob: Appreciate the tip. I will definitely add that in.

Thanks again!
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now