Re: Pushing out a password CHange
- From: Toby Jennings <toby.jennings@xxxxxxxxxxxxxx>
- Date: Mon, 01 Aug 2005 12:36:27 -0500
Greg Green wrote:
> Hi All,
> Im trying to find out if its possible to push out a change in username and
> password on the local machines for our domain.
> Why you ask? ... well..... currently we have around 8 passwords from 3
> previous mergers and noone competant enough in the past to change and manage
> the systems. Now i'd like to have a unified user/password as admin account
> on localmachines this is happening to all machines on our network,
> workstations and servers (different password obviously :p).
>
> Regards,
>
> Greg Green
>
>
>
You can create a script file to affect the change (e.g. net user
commands in a batch file) and assign the script to the computers via a
computer startup script GPO. Of course, this assumes that all your
clients can participate in group policy.
For instance, the command "net user administrator %1" will change the
local administrator password. You can supply the password itself as a
parameter for the script file in the GPO (that's where the %1 comes in;
it's a placeholder for the first parameter fed to the script); assign
the AGP right to "domain computers" or whatever security group you wish
(with computer accounts, not user accounts, as members); revoke the
Authenticated Users read and AGP rights to protect the GPO and its
settings, since it contains sensitive passwords.
.
- References:
- Pushing out a password CHange
- From: Greg Green
- Pushing out a password CHange
- Prev by Date: Re: Large Memory
- Next by Date: SNMP error (event id 1501)
- Previous by thread: Re: Pushing out a password CHange
- Next by thread: master browser for the domain
- Index(es):
Relevant Pages
|
