Re: Local admin password

From: francois (francois.colombier_at_free.fr)
Date: 06/30/05

  • Next message: Jason Gregson: "RE: Local admin password" 
    Date: Thu, 30 Jun 2005 11:12:54 +0200
To: Alexander Klimov <alserkli@inbox.ru>

    Alexander Klimov a écrit :

    >On Tue, 28 Jun 2005 danoli@adinet.com.uy wrote:
    >
    >
    >>One of my customers asks me how to change the password of all local administrators
    >>of Windows XP workstations. They don?t want to go to each one and change
    >>it because they are quite a lot and they need to put the same password to
    >>all. Is there any tool to do this?
    >>
    >>
    >
    >Everybody have a solution to the problem, yet nobody seems to think
    >a step ahead :-)
    >
    >If you use the same password for all the local admin accounts, when
    >anybody with physical access to one computer and john-the-ripper has
    >immediate access to all of them!
    >
    >Whatever tool you use for setting passwords make sure that you set
    >*different* passwords for different hosts.
    >
    >
    >
    It was exactly what i thought when i read this subject.
    However, if the password is strong enough (more than 8 characters, using
    letters , figures and symboles) it could be very difficult to find it out.
    Of course, data could be store in a USB key and used in a huge and
    powerfull computer in order to make the rip outside the company.

    But, I agree with Alexander, the best is to follow the rule that says
    that each host has to have its own password.
    It doesn't mean that this can't be done automatically.
    It's just somewhat more complicated, and you need to keep in secret a
    file where the couples (host,password) are stored.

    ---------------------------------------------------------------------------
    ---------------------------------------------------------------------------

  • Next message: Jason Gregson: "RE: Local admin password"

    Relevant Pages

    • Re: Time and date lock
      ... Regular users are not allowed to change the clock. ... They have to be local administrators on the machine to do it. ... > I am running Windows 2003 Server with 15 client Windows XP workstations. ... > The users are not local users of the workstations, but log on to their XP ...
      (microsoft.public.security)
    • Local admin password
      ... One of my customers asks me how to change the password of all local administrators ... of Windows XP workstations. ...
      (Focus-Microsoft)
    • RE: Local admin password
      ... Subject: Local admin password ... One of my customers asks me how to change the password of all local administrators ... of Windows XP workstations. ...
      (Focus-Microsoft)
    • RE: Fax Preview Button
      ... please understand that if you use the Add User wizard to add ... Please add the problematic user account to the Local Administrators ... security group, and then check if the issue can be re-produced. ... >is Windows XP Professional SP2. ...
      (microsoft.public.windows.server.sbs)
    • Re: non-admins force logoff?
      ... Restricted User Groups can be used to acheive this through polciy. ... have to isolate your workstations into a single OU to make this work though. ... > Example of how to add a specific Group to the local Administrators group ... >> go to add my helpdesk group to the local administrators (without walking ...
      (microsoft.public.windows.server.general)