Windows Plugin
Rotate Windows user passwords with Commander
Last updated
Was this helpful?
Rotate Windows user passwords with Commander
Last updated
Was this helpful?
Keeper has also launched a zero-trust Password Rotation feature with KeeperPAM. This new capability is recommended for most password rotation use cases. The Documentation is linked below:
Commander
This plugin allows rotating a windows user's password using the net user
command.
Rotation supports legacy and typed records. If using typed record, a 'login' type field is required. Additional fields may be added depending on the rotation type as well. See the instructions below.
Populate the 'Login' field of the Keeper record with the login to use with this rotation.
This plugin rotates passwords for both local and Active Directory accounts. When rotating Active Directory password use DOMAIN\USERNAME
syntax for Login field.
cmdr:plugin
windows
(Optional) Tells Commander to use Windows rotation. This should be either set to the record, or supplied to the rotation command
cmdr:rules
# uppercase, # lowercase, # numeric, # special'
(e.g. 4,6,3,8)
(Optional) Password generation rules
To rotate Windows passwords, use the rotate
command in Commander. Pass the command a record title or UID (or use --match
with a regular expression to rotate several records at once)
After rotation is completed, the new password will be stored in the Password
field of the record