Solved

Change local admin password with GOP

Posted on 2013-12-18
5
503 Views
Last Modified: 2013-12-30
I've been looking over lots of posts on this and can't seem to nail it down.

Got a single domain with 180 laptops for students. The local "Administrator" account is disabled and we use a local account called cityadmin to log in locally with local admin rights.

I want to set up a GPO that will change the local cityadmin password.

Using Windows 08 server R2 as DC and WIndows 7 64bit Enterprise as clients.

After creating a GPO, I go to Computer - Preferences - Control Panel - Local users and groups

I create a NEW policy that updates local user cityadmin with a new password.

I link this to the OU with my machines.

I use gpupdate /force on a laptop

However, the laptop will process the user policy, but will give an error that it can't process the computer policy.

If I remove the GPO from the OU, both user and computer process fine.

Should this work?  Or will I need to go to scripting?

Thanks!
0
Comment
Question by:ejcrist
  • 2
  • 2
5 Comments
 
LVL 22

Expert Comment

by:Nick Rhode
Comment Utility
I followed this little guide for using GPP:  http://social.technet.microsoft.com/Forums/windowsserver/en-US/b1e94909-bb0b-4e10-83a0-cd7812dfe073/change-local-administrator-password-thru-gpo?forum=winserverGP

Otherwise you can create a login script to do this which is in the link above or use this simple script:

net user administrator "local admin password"
0
 

Author Comment

by:ejcrist
Comment Utility
Yeah, I have that exact link and followed the GPP settings.  I'd rather use GPP than a script if I can.
0
 
LVL 22

Expert Comment

by:Nick Rhode
Comment Utility
What you can try (since they are laptops).  Do a direct connect and try it.  What might be happening is when the gpo is pulled the system is not technically connected and logging in using cached credentials.  Then it connects to wireless so gpo would not get pulled on startup.
0
 

Author Comment

by:ejcrist
Comment Utility
Yep, already tried that.  Still get an error when trying to apply only the Computer preference.

The user policy applies successfully.

When I disable the preference on the server, then perform another gpupdate BOTH user and computer apply successfully.
0
 
LVL 1

Accepted Solution

by:
prashantpathak earned 500 total points
Comment Utility
0

Featured Post

Free Gift Card with Acronis Backup Purchase!

Backup any data in any location: local and remote systems, physical and virtual servers, private and public clouds, Macs and PCs, tablets and mobile devices, & more! For limited time only, buy any Acronis backup products and get a FREE Amazon/Best Buy gift card worth up to $200!

Join & Write a Comment

Resolve DNS query failed errors for Exchange
The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
This Micro Tutorial will teach you how to change your appearance and customize your Windows 7 interface to your unique preference. This will be demonstrated using Windows 7 operating system.
The viewer will learn how to successfully create a multiboot device using the SARDU utility on Windows 7. Start the SARDU utility: Change the image directory to wherever you store your ISOs, this will prevent you from having 2 copies of an ISO wit…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now