Automating the Management of Local Admin Passwords with Microsoft LAPS

Chris Williams Security, SMB, SME

Effectively managing local admin passwords across hosts is a common challenge for IT Departments. This drives the reuse of passwords across hosts and makes local admin passwords a highly valued target for attackers to use in attacks like Pass-the-Hash (PtH). This can lead to privilege escalation and access to higher valued assets in the domain. The good news is that Microsoft offers a free, easy to deploy solution that simplifies the management of local admin passwords across domain joined computers. LAPS is built on Active Directory infrastructure so there’s no need for third-party applications. The agent is a Group Policy …