Solved

blank local passwords

Posted on 2014-12-09
6
116 Views
Last Modified: 2015-01-03
Is there a GPO in server 2008 that I can use to remove any LOCAL user accounts with blank passwords or at a minimum give that account a password??


Please advise
0
Comment
Question by:Rbbedz1
  • 3
  • 2
6 Comments
 
LVL 30

Accepted Solution

by:
Rich Weissler earned 500 total points
ID: 40489442
You can very easily limit local accounts with blank passwords so that they can only log in at the console... no network access.  Does that help?

Otherwise, I think could probably define a startup script to find local accounts with blank passwords, and disable them.
0
 
LVL 54

Expert Comment

by:McKnife
ID: 40489810
That script would do. But if we think of lazy local admins that simply re-enable the account and leave the password blank, you should add a password policy to your domain (which effectively works for local accounts, too). Then you could use another neat function that sets at least an 8-char-random password. You would apply that command to the usernames you found.
net user username /random

There are also powershell scripts that can set long random passwords, I could provide one if you need.
0
 

Author Comment

by:Rbbedz1
ID: 40490041
I already have the limit local accounts with blank passwords so that they can only log in at the console... enabled
and I have a domain acct password policy in effect

What I was hoping to do was search for local accounts that have been setup and possibly with blank password.  I want to make sure that there are no local accts with blank passwords and change if there is

if you can send the ps script with instructions on how to run/use that would be greatly appreciated.

rbbedz1
0
Migrating Your Company's PCs

To keep pace with competitors, businesses must keep employees productive, and that means providing them with the latest technology. This document provides the tips and tricks you need to help you migrate an outdated PC fleet to new desktops, laptops, and tablets.

 

Author Comment

by:Rbbedz1
ID: 40490044
tell me more about this "should add a password policy to your domain (which effectively works for local accounts, too). Then you could use another neat function that sets at least an 8-char-random password. You would apply that command to the usernames you found.
 net user username /random"


this sounds very intriguing..
0
 
LVL 54

Expert Comment

by:McKnife
ID: 40490085
"What I was hoping to do was search for local accounts that have been setup and possibly with blank password" - ...and that is exactly what Razmus provided. That script, did you try it?

Will come with more, soon.
0
 
LVL 54

Expert Comment

by:McKnife
ID: 40490331
0

Featured Post

Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Users of Windows 10 Professional can disable automatic reboots using the policy editor. This tool is not included in the Windows home edition. But don't worry! Follow the instructions below to install (a Win7) policy editor on your Windows 10 Home e…
Our Group Policy work started with Small Business Server in 2000. Microsoft gave us an excellent OU and GPO model in subsequent SBS editions that utilized WMI filters, OU linking, and VBS scripts. These are some of experiences plus our spending a lo…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

820 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question