<div>
Will there be any impact if I reset the DSRM password on other DCs to known password?
</div>


Will there be any impact if I reset the DSRM password on other DCs to known password?

<div>
In order to start DC in DRSM mode, you need console access to domain controller, if malicious user have console access and if he knows the DSRM password, he can logon to DC with DSRM, restore AD data etc<br />
<br />
To avoid this situation, set complex DSRM password not used so far and keep it physically secured location
</div>


In order to start DC in DRSM mode, you need console access to domain controller, if malicious user have console access and if he knows the DSRM password, he can logon to DC with DSRM, restore AD data etc

To avoid this situation, set complex DSRM password not used so far and keep it physically secured location

<div>
Glad we could help.<br />
Please remember to endorse my, or any other expert's comments that you found helpful by clicking on the &quot;Thumb's Up&quot; button
</div>


Glad we could help.
Please remember to endorse my, or any other expert's comments that you found helpful by clicking on the "Thumb's Up" button

<div>
<div class="content wysiwyg-content">
Expert team out there. We have several DCs in the forest and &nbsp;I am going to promote another server to be an DC.<br />
I do not remember the DSRM password of the DCs. Is DSRM password should be same on all DC? Do i need to know the DSRM &nbsp;to promote?
</div>
</div>


Expert team out there. We have several DCs in the forest and  I am going to promote another server to be an DC.
I do not remember the DSRM password of the DCs. Is DSRM password should be same on all DC? Do i need to know the DSRM  to promote?

DSRM password

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.