Microsoft Local Administrator Password Solution (LAPS)



RECOMMENDED: Click here to fix Windows errors and optimize system performance

Microsoft has released Local Administrator Password Solution. LAPs solve the problem of using a shared local account with an identical password on each Windows computer in a domain by setting a different random password for the shared local administrator account on each computer in the domain.

Local Administrator Password Solution



Fix Update December 2019:

We recommend you try using this new tool. It fixes a wide range of computer errors, as well as protecting against things like file loss, malware, hardware failures and optimizes your PC for maximum performance. It fixed our PC quicker than doing it manually:

  • Step 1 : Download PC Repair & Optimizer Tool (Windows 10, 8, 7, XP, Vista – Microsoft Gold Certified).
  • Step 2 : Click “Start Scan” to find Windows registry issues that could be causing PC problems.
  • Step 3 : Click “Repair All” to fix all issues.

download
(optional offer for Advanced System Repair Pro -> Website | EULA | Privacy Policy | Uninstall)



This solution automatically manages the local administrator password on the domain computers so that the password is:

  • Unique on any managed computer
  • Randomly generated
  • Securely stored in AD infrastructure.

Features include:

Security:

  • Password protection during transport by Kerberos encryption
  • Password is protected in AD by AD ACL
  • Effectively reduce pass-the-hash attack

Manageability:

  • Configurable password settings : Age, complexity, length
  • Ability to force password reset
  • Integrated security model with AD LCD
  • End user interface can be any AD management tool,
  • PowerShell and Fat Client are provided
  • Protection against deleting computer accounts
  • Easy implementation and minimum space required

Extensibility:

  • Additional password encryption stored in AD
  • Password history
  • Web UI.

Domain administrators using this solution can specify which users, such as helpdesk administrators, are allowed to read passwords.



RECOMMENDED: Click here to troubleshoot Windows errors and optimize system performance

Related Video