Re: Changing domain password on large number of servers

From: Roger Abell (mvpNOSpam_at_asu.edu)
Date: 05/24/05

Next message: Elena: "security of ldap."

Previous message: REA: "Re: Certificate Enrollment Denied By CA Server- HELP!"
In reply to: Andy Lowe: "Changing domain password on large number of servers"
Next in thread: Steven L Umbach: "Re: Changing domain password on large number of servers"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 24 May 2005 07:37:47 -0700

First, you are saying the domain Administrator account, but obviously
you do not mean this, but instead the machine local Administrator account
on each of these servers.

You should review the archives over in the newsgroup
microsoft.public.windows.server.scripting and also visit the
www.microsoft.com/technet/scriptcenter

Basically you only need to enumerate all services on each target machine,
locate the services running as that machine's Administrator (I would of
course recommend none be found), then change the password of the account
and cycle the relevant services.

-- 
Roger Abell
Microsoft MVP (Windows  Security)
MCSE (W2k3,W2k,Nt4)  MCDBA
"Andy Lowe" <Andy Lowe@discussions.microsoft.com> wrote in message
news:FD41E89F-EC34-4913-88DE-2FE10FF376D7@microsoft.com...
> Hi,
>
> I am currently running a Windows 2003 server active directory domain. I
have
> been asked to change the domain Administrator password but due to the
number
> of servers this would be a long winded process to do this manually. Also
the
> business is a 24 hour call centre who say they can only afford 15 minutes
> downtime maximum.
>
> Is there any wat to script the password change to automatically change the
> password on all servers (and any relevant services).
>
> Any help would be much appreciated.
>
> Andy

Next message: Elena: "security of ldap."

Previous message: REA: "Re: Certificate Enrollment Denied By CA Server- HELP!"
In reply to: Andy Lowe: "Changing domain password on large number of servers"
Next in thread: Steven L Umbach: "Re: Changing domain password on large number of servers"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: administrator password not accepted after changing it
... If the new domain administrator account works on all other machines except on the sharepoint, i agree with Ace to make sure that you are not having caps lock enabled or maybe your keyboard language is different. ... sharepoint server has stopped working for the administrator account. ...
(microsoft.public.windows.server.active_directory)
Re: Change Admin Password
... Do you mean the Domain administrator or the local machine administrator ... from clients and member servers? ... Are there gotcha's to look out for if I change the Admin password. ... dave Admin ...
(microsoft.public.win2000.security)
Re: Hack Attempt on Windows 2003 AD Native
... Instead of renaming the Administrator account, ... > Source IPs of machines trying to hack my servers... ... > My servers on the Internet are: ... > they were attempting to connect again but using the NEW Admin account I ...
(microsoft.public.win2000.active_directory)
Re: Hack Attempt on Windows 2003 AD Native
... Instead of renaming the Administrator account, ... > Source IPs of machines trying to hack my servers... ... > My servers on the Internet are: ... > they were attempting to connect again but using the NEW Admin account I ...
(microsoft.public.windows.server.active_directory)
Re: Change Admin Password
... Do you mean the Domain administrator or the local machine ... administrator from clients and member servers? ... Are there gotcha's to look out for if I change the Admin password. ...
(microsoft.public.win2000.security)