Query for a known Admin password

Does anyone know if there is a way to query machines against a known password? For example lets say I have 10 machines that should all have an admin pass of "password". I'm wondering if there is way to query the machines (preferably WMI) and ask is "password" your password and have the machines return a true or false.

Possible?

I would like to use this to try and create an SCCM collection based on machines that do NOT have the correct password, so that I can update them.

Thanks,
Mike
LVL 5
PAdocITAsked:
Who is Participating?
 
tighecCommented:
If you have a list of machines in a file called machines.txt, you can use the following:

for /F %a in (machines.txt) do net use \\%a\c$ /u:%a\administrator Password || @Echo %a>>BadPassword

It will try to map to the c$ share of each machine, using the administrator account for that machine and the password 'Password'.  If it fails, it will echo out the machine name to txt file 'BadPassword.txt'
0
 
merowingerCommented:
No the password cannot be queried. This would be a huge security risk.
You could write a script which tries an action on all Clients. E.g. create a textfile on C:\
Your script tries different passwords and so it returns an "access denied" or "success" for each password and you know which password is configured...
0
 
RobSampsonCommented:
You could also just go ahead and set the password for a specific account, whether it was already correct or not...that wouldn't make any difference.

Rob.
0
Cloud Class® Course: Microsoft Azure 2017

Azure has a changed a lot since it was originally introduce by adding new services and features. Do you know everything you need to about Azure? This course will teach you about the Azure App Service, monitoring and application insights, DevOps, and Team Services.

 
PAdocITAuthor Commented:
@merowinger: That's interesting idea. I will have to look into that.

@Rob: That's pretty much what happens now. I was just looking for a way to have a visual representation of which machines had the correct password and which didn't.

I figured there was really no way to query the password, however there people here way smarter than me so figured I would throw it out there. :)

Thanks for the responses.
0
 
RobSampsonCommented:
So why was the question re-opened?  Did you want to regrade it?  If you're going to use tightec's solution, I'd probably add a bit to remove the mapping as well.

Rob.
0
 
PAdocITAuthor Commented:
Thanks guys. Sorry for the regrade, but I thought it fair to give this one to tighec.

@rob: Appreciate the tip. I will definitely add that in.

Thanks again!
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.