+ Reply to Thread
Results 1 to 2 of 2
  1. Senior Member
    Join Date
    Oct 2013
    Location
    Denver, CO
    Posts
    2,327

    Certifications
    MS: Information Security, CISSP, GCIH, CEH, CHFI, CCNA: S, CCNA: R&S, VCP6-DTM, Linux+, Project+, VCA6-DCV
    #1

    Default User's Passwords During Machine Reimage/Troubleshooting

    Just curious what your guys' solutions are to this issue. User needs PC reimaged or worked on and Service Desk needs to login as the user to setup the profile for them. Obviously the user giving out their password is not secure and the organization compromises security and accountability. The other option I've seen is resetting the user's password to something temporary so both the SD and user knows the password for the time being, then they force them to change it after. This of course will make the user login again to any other devices that they may have (phone, tablet, etc.). Is the latter pretty standard or are there better and more secure options?
    Reply With Quote Quote  

  2. Self-Described Huguenot blargoe's Avatar
    Join Date
    Nov 2005
    Location
    NC
    Posts
    4,095

    Certifications
    VCAP5-DCA; VCP 3/4/5/6 (DCV); EMCSA:CLARiiON; Linux+; MCSE:M 2000/2003; MCSE:S 2000/2003; MCTS:Exch2007; Security+; A+; CCNA (expired)
    #2
    I think our desktop support guys use a settings transfer wizard that is part of Windows. They are definitely not getting the users' passwords and/or resetting it during reimaging and swapping in a newer machine.
    IT guy since 12/00

    Recent: 10/27/2017 - Passed Microsoft 70-410 (one exam left for MCSA 2012)
    Working on: MCSA 2012 upgrade from 2003 (to heck with 2008!!), MCSA 2016 upgrade, more Linux
    Thinking about: VCP6-CMA, AWS Solution Architect (Associate), Python, VCAP6-DCD (for completing VCIX)
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks