Microsoft LAPS (Local Administrator Password Solution)

calendar Feb 23, 2023 · 1 min read · passwords  ·
Share on: linkedin copy

Microsoft LAPS (Local Administrator Password Solution) is a tool designed to securely manage local administrator account passwords on Windows domain-joined computers. It automates password generation and rotation, and stores passwords in a secure manner, providing greater control and security over local accounts.

Get the local admin password for 1 computer

from Active Directory PowerShell:

1Get-AdmPwdPassword -ComputerName <computername>

Get the OU and DC info for a computer

from Active Directory PowerShell:

1Get-ADComputer -Identity <computername> -Properties DistinguishedName,DNSHostName

Get the local admin password for all computers

from Active Directory PowerShell:

1Get-ADComputer -Filter * -SearchBase OU=,DC=,DC=,DC= | Get-AdmPwdPassword -ComputerName {$_.Name}