This is an out-of-the-box policy created to demonstrate The Randomize Administrator Password policy demonstrates how to randomize a password passwords for an account. This policy targets the built-in Administrator (even if that account has been renamed) and will generate a 12 twelve-character unique random password. To To randomize the built-in administrator account password on computers with on computers that have the Local Security Agent installed, enable this policy and change the password complexity to meet your requirements. The policy can be found herethe Randomize Administrator Password policy. This is an out-of-the-box policy that requires you to make only slight configuration changes.
Enable the Policy
To enable this policy, do the following steps:
- In the Arellia Security Manager, click the Policies tab.
- In the file library in the left pane, navigate to Arellia Solutions > Local Security > Policies > Randomize Administrator Password Policy.
The configurable policy settings are:- User Account
- Standard will target the account based upon the RID of the account
- Named will target a specific user account with that name
- Password length
- Characters to use in the random password
- Log password at server before change
- User Account
- In the right pane next to User Account, choose Standard / Administrator, or a Named account.
- Then choose your password settings.
Tip |
---|
Arellia recommends leaving "Log password at server before change" enabled. This setting will ensure the server always knows the random passwords on an endpoint. The password length and complexity also must meet the requirements set by Group Policy. If the new random password is not long or complex enough, Arellia will fail to set the random password. |
...
Schedule and Apply
For instructions on how to complete set the settings schedule for the policy, go to LSS Policies and Tasks.Create or Change a Policy Schedule.
For instructions on how to apply the policy to computers, go to Resource Targets.
Run a Task
To run this task, do the following steps:
- In the Arellia Security Manager, click the Tasks tab.
- In the file library in the left pane, navigate to Jobs and Tasks > Client Tasks > Local Security > Randomize Administrator Password.
- Select the password randomization settings.
- Set a schedule for the task. (For instructions about how to set a schedule, go to Calendar Options.)