Skip to main content
Question

Hidden Admin account with random password how to manage/login?

  • January 29, 2021
  • 4 replies
  • 32 views
F
Forum|alt.badge.img+6

Hello Everyone,

This might sound silly but how do you login do the hidden Admin account with random password on a machine on enrollment? Is the password stored somewhere or can you change the password somewhere before needing to manage the users machine? How does this tie in with FV2?

Thanks.

      4 replies

      Tangentism
      Forum|alt.badge.img+10
      • Tangentism
      • Honored Contributor
      • January 29, 2021

      Are you not creating a local admin account at enrolment to manage secure token, etc?

      M
      Forum|alt.badge.img+9

      Did you thought about something like this: https://github.com/joshua-d-miller/macOSLAPS
      https://github.com/NU-ITS/LAPSforMac
      We do use the 2nd one and find it very useful.

      F
      Forum|alt.badge.img+6
      • fimi
      • Author
      • Contributor
      • January 30, 2021

      @Tangentism I'm talking about under user-initiated enrollment where you can select the option to randomize the password. For prestage enrollment you can only put a password. That is correct.

      @maik.sanftenberg ah yes I remember LAPS on Windows. This might do.

        F
        Forum|alt.badge.img+4
        • FranckS
        • Contributor
        • August 14, 2021

        You may also test EasyLAPS. I'm the author of this tool which is designed to regularly rotate the local administrator account password of a Mac and store it in a MDM like Jamf Pro or Jamf School.

          Terms & ConditionsCookie settingsAccessibility statement