Re: Easy question on the local admin passwords
- From: "Steven L Umbach" <n9rou@xxxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Fri, 7 Jul 2006 18:11:28 -0500
With a Group Policy "startup" script users do not need read access to the
script in sysvol. You can remove authenticated users and add domain
computers with read/list/execute instead. You will also have a potential
problem in that the startup script will not be run until the computer is
restarted on the domain. You might want to use different local administrator
password on the laptops than the workstations. --- Steve
<boomboom999@xxxxxxxxx> wrote in message
news:1152305658.872352.40770@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Windows XP/2003, Active Directory, SMS 2003
How can I change regularly the local administrator's password on 4000
workstations?
GPO? SMS?
Option 1 - Use SMS or GPO for that purpose
In that case, I will need to place the password in SMS packages or in
GPO scripts which is not good because the SMS packages and GPO scripts
can be read by users and the password can be easily discovered.
Option 2 - Use some script that goes thru AD and changes the password
remotely on all PCs, one by one
That seems to be a good idea but not all workstations are static. There
are laptops. So, sometimes they are absent so they will miss the
password change quite often.
Any idea or advice?
.
- Follow-Ups:
- Re: Easy question on the local admin passwords
- From: boomboom999
- Re: Easy question on the local admin passwords
- References:
- Easy question on the local admin passwords
- From: boomboom999
- Easy question on the local admin passwords
- Prev by Date: Re: users can't change password
- Next by Date: Re: Easy question on the local admin passwords
- Previous by thread: Easy question on the local admin passwords
- Next by thread: Re: Easy question on the local admin passwords
- Index(es):
Relevant Pages
|
