Versions Compared

Old Version 4

changes.mady.by.user Mike Murphy

Saved on

compared with

New Version Current

changes.mady.by.user Max Pinion

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

This is an out-of-the-box policy created to demonstrate The Randomize Administrator Password policy demonstrates how to randomize a password passwords for an account. This policy targets the built-in Administrator (even if that account has been renamed) and will generate a 12 twelve-character unique random password. To  To randomize the built-in administrator account password on computers with on computers that have the Local Security Agent installed, enable this policy and change the password complexity to meet your requirements. The policy can be found herethe Randomize Administrator Password policy. This is an out-of-the-box policy that requires you to make only slight configuration changes.

Enable the Policy

To enable this policy, do the following steps:

  1. In the Arellia Security Manager, click the Policies tab.
  2. In the file library in the left pane, navigate to Arellia Solutions > Local Security > Policies > Randomize Administrator Password Policy.
    The configurable policy settings are: AnchorConfigConfig
    1. User Account
      1. Standard will target the account based upon the RID of the account
      2. Named will target a specific user account with that name
    2. Password length
    3. Characters to use in the random password
    4. Log password at server before change 
    Image RemovedImage Added 
  3. In the right pane next to User Account, choose Standard / Administrator, or a Named account.
  4. Then choose your password settings.
    Image Added

 

Tip

Arellia recommends leaving "Log password at server before change" enabled. This setting will ensure the server always knows the random passwords on an endpoint.

The password length and complexity also must meet the requirements set by Group Policy. If the new random password is not long or complex enough, Arellia will fail to set the random password.

...

Schedule and Apply

For instructions on how to complete set the settings for the policy, go to LSS Policies and Tasks.schedule for the policy, go to Create or Change a Policy Schedule.

For instructions on how to apply the policy to computers, go to Resource Targets.

Run a Task

To run this task, do the following steps:

  1. In the Arellia Security Manager, click the Tasks tab.
  2. In the file library in the left pane, navigate to Jobs and Tasks > Client Tasks > Local Security > Randomize Administrator Password.
    Image Added 
  3. Select the password randomization settings.
  4. Set a schedule for the task. (For instructions about how to set a schedule, go to Calendar Options.)
    Image Added 

Password Randomization