Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

How-To Change The Local Admin Password Using GPO

Posted on 2014-12-28
5
Medium Priority
?
259 Views
Last Modified: 2014-12-28
I am tasked to change all the local passwords of all member server for windows 2008R2 but when i tried to do this in gpo the password field is locked, is there another way i can change all member servers via gpo without having to touch every server

Thanks

Chappy
0
Comment
Question by:chappy64
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
5 Comments
 
LVL 10

Expert Comment

by:Michael Ian Claridge
ID: 40521017
Hello,

Yes this has since changed, the below link will help you...its not as easy as it once was, but the link does demonstrate the security issue from the previous method.

http://blogs.technet.com/b/askpfeplat/archive/2014/05/19/how-to-automate-changing-the-local-administrator-password.aspx

Regards

Michael
0
 
LVL 25

Expert Comment

by:NVIT
ID: 40521021
A command line way is with pspasswd: http://technet.microsoft.com/en-us/sysinternals/bb897543.aspx

PsPasswd DOES NOT send passwords over the network in the clear.

In your case, maybe pass the server names in a text file to pspasswd like this:

pspasswd @textfile.txt -u logonname -p logonpassword LocalAdminName NewLocalAdminPassword

Open in new window

0
 

Author Comment

by:chappy64
ID: 40521054
Thanks Newvillage IT
So when using the pspasswd do i have to export the servers computer name to a text file? and  in what format is it listed in the text file to change each server
0
 
LVL 25

Accepted Solution

by:
NVIT earned 1500 total points
ID: 40521112
Revised:
Yes. Put the server names in a text file. I assume  all the servers are in the same domain.  In a CMD prompt:  
NET VIEW > SERVERS.TXT

Open in new window

Then edit SERVERS.TXT with Notepad, leaving only the server names.
Also, remove the \\ prefix at the start of the server names, and any trailing Remarks, if any.

If you just have a few servers, you can manually create the .txt file and enter the server names one, per line.
0
 

Author Comment

by:chappy64
ID: 40521321
Thank you very much NewVillage
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article explains how to install and use the NTBackup utility that comes with Windows Server.
I was prompted to write this article after the recent World-Wide Ransomware outbreak. For years now, System Administrators around the world have used the excuse of "Waiting a Bit" before applying Security Patch Updates. This type of reasoning to me …
This tutorial will show how to push an installation of Backup Exec to an additional server in both 2012 and 2014 versions of the software. Click on the Backup Exec button in the upper left corner. From here, select Installation and Licensing, then I…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…

610 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question