How to manage user's passwords ?

We have 3 facilities/sites with total about 70 users through merge or acquisition. Each site has its own LAN and AD domain. We set up Trust Relationship between domains so users can access shared network resources in the head quarter. Our users are not well-educated so sometimes they forgot their password right after a long vacation. The admin needs to know every user's password so he can set up on scanners to scan documents to network drives.  

It has been just fine till recently some users asked not to disclose their passwords even to the admin.
Can you tell me how should we do? Any suggestions?
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Kyle AbrahamsSenior .Net DeveloperCommented:
"The admin needs to know every user's password so he can set up on scanners to scan documents to network drives."

I doubt that's the case.  The easier way is to create a service user (Say "Scanner") that has access to each of the scanners and the network drive.  From there other people can get granted permissions to said drives as needed.

Having anyone know anyone else's password is a big violation of security.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
David Johnson, CD, MVPOwnerCommented:
If I know your userid and password what is stopping me from doing something malicious if I don't like you.. or even if the user does do something malicious how can you PROVE that it was the user if the by policy others  also know the users password.  Why have passwords at all if other users know the password?
Neil RussellTechnical Development LeadCommented:
Any company that has a policy of insisting that you give your password to ANYBODY is not a company I would want to work for.
Under no circumstance is there EVER a need for an admin to know users passwords. It is why ther are encrypted an (Generally) non reversible.

The correct answer is....

Tell your admin to learn how to administer correctly.
When a user forget his/her password you just reset it and set the account to change the password at next logon.
That's how it works !

Agree with Kyle Abrahams: You should make one user for the scanner
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Active Directory

From novice to tech pro — start learning today.