VMware Workspace ONE Community
njenkinson
Contributor
Contributor
‎03-15-2023 11:49 AM

Auto-rotation of local admin password on Windows laptops

I am currently looking to implement a profile to a group similar to Apple's DEP where, once the laptop is configured the local admin password rotates every "x" hours. I can't seem to find documentation about this within the KB, if anyone has suggestions and/or have done this yourself any help would be greatly appreciated.

 

Thank you for reading!

Nolan

Reply
0 Kudos
4 Replies
Phil_Helmling
VMware Employee
VMware Employee
‎03-15-2023 04:34 PM

Hi Nolan, my recommendation would be to write a powershell script to achieve this and use the schedule option when assigning it to a SmartGroup(s) like shown in the attached screenshot. We don't have the feature built into the platform, but there are three different feature requests that you could add weight to by voting:

https://euc-vmware.aha.io/ideas/ideas/WIND-I-120

https://euc-vmware.aha.io/ideas/ideas/MSFTI-I-78

https://euc-vmware.aha.io/ideas/ideas/MSFTI-I-343

 

Preview file
72 KB
Reply
Phil_Helmling
VMware Employee
VMware Employee
‎03-15-2023 07:00 PM

Hi again Nolan,

I wrote this script to achieve your base requirements. It is designed to be deployed with WS1 Scripts and requires the two variables set as part of the WS1 Scripts function. You set the frequency of run in the assignment.

https://github.com/helmlingp/WS1UEM_Scripts/blob/main/GenerateLocalAdministratorPassword.ps1

 

Reply
njenkinson
Contributor
Contributor
‎03-17-2023 08:50 AM

Thank you very much Phil! I really appreciate it. I will be utilizing this.

Reply
0 Kudos
ITCOO
Contributor
Contributor
‎10-25-2023 10:49 PM

It would be worth looking at Windows LAPS. 

Reply
0 Kudos