Re: local admin account password
From: Erwin Fritz (efritz_at_glja.com)
Date: 11/27/03
- Previous message: Depp, Dennis M.: "RE: local admin account password"
- In reply to: Tim Eddy: "RE: local admin account password"
- Next in thread: Marius Huse Jacobsen: "Re: local admin account password"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 27 Nov 2003 12:55:51 -0700
As far as mass rollouts of passwords goes, can't you just use the cusrmgr utility that comes with W2K? We use that here, inside a wrapper script that actually generates the password for each machine.
The catch is that the utility can't change passwords of machines that are powered off. However, it does generate an error for those machines, so we deal with them manually later.
Or am I missing something?
Erwin Fritz
Tim Eddy wrote:
> how do you deal with VMware sessions, and SAN boot servers that can be powered off for long periods, and multi-os machines, and BMR images?
>
> how do you securely get your password changing script out to all machines? I assume your using a software delivery agent that is running under local system. If your using a script to change it, then a user could just redirect your script as it is run on the machine and get the new password.
>
> if your password was 127 characters long, the admins would write it down on bits of paper. If its easy enough for them to remember each week, then it can be cracked within a week.
>
---------------------------------------------------------------------------
---------------------------------------------------------------------------
- Previous message: Depp, Dennis M.: "RE: local admin account password"
- In reply to: Tim Eddy: "RE: local admin account password"
- Next in thread: Marius Huse Jacobsen: "Re: local admin account password"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
