search

joshua-d-miller / LAPS-for-macOS

A macOS Application for retrieving LAPS AD Passwords
MIT License
44 stars 8 forks source link

Blank password #7

Open g003441 opened 3 years ago

g003441 commented 3 years ago

We downloaded this tool and added it to our MDM filewave. We can now search macOS serials and it comes up with nothing in the password field and that the password is set to expire 1/1/0001 12:00:00AM. These are AD joined MacOS devices. We have set these devices to have the ability to reset their password. When setting a new expiration time we get "failed to request password reset."

joshua-d-miller commented 2 years ago

Hello @g003441!

I apologize for the absolutely egregious time it took me to respond to this. When using the LAPS for macOS software you will need the following to reset a password:

  1. Computer Name
  2. Connections to AD
  3. An account that can modify computers in AD

If the account cannot modify the computer then the expiration date would be unable to be changed. If you are trying to reset the password using macOSLAPS you can do that by invoking macOSLAPS -resetPassword. Let me know if this helpful and I'm happy to troubleshoot further.

Thanks!