A GFI MAX RM customer changed their domain administrator password and then lost the password and with no other administrator accounts were effectively locked out of their server.
Luckily they had the GFI MAX RemoteManagement agent installed on their domain controller and were able to run the following command (as an automated task) to remotely reset the password for the domain administrator account.
cmd.exe /k net user administrator password1! /domain
(password1! being the new password)
This has been tested on Windows 2003 and 2008 domain controllers.
Note: The new password will need to meet the domain password security requirements to be successfully changed.
Much easier than the current recovery methods of creating offline password resets CD (if necessary) and run once services. No reboot necessary!
No comments:
Post a Comment