Password Resets Everywhere Perform on-demand or scheduled Passwords Resets across multiple different systems/platforms. Using a flexible and extensible architectural design, PowerShell scripts form the basis of performing password resets everywhere.

If you have a system which we don't currently support Password Resets for, you can simple use our scripts as a basis for creating your own, and then add them into Passwordstate for your own use. This flexible design approach lets you test your own PowerShell Scripts outside of Passwordstate, and when you're satisfied they are functioning correctly, begin using them to perform On-Demand or Scheduled resets.


Password Resets

Password Reset PowerShell Scripts are provided as standard for each of the following types of systems/accounts:
  • Active Directory
  • Windows Accounts
  • Windowd Scheduled Tasks
  • Windows Services
  • IIS Application Pools
  • Cisco Routers and Switches
  • Linux Accounts (including root)
  • Microsoft SQL Accounts
  • MySQL Accounts
  • Oracle Accounts
  • COM+ Components
  • HP iLO out of band management cards
  • HP H3C switches and routers
  • HP Procurve switches and routers
  • Juniper ScreenOS firewalls
  • Juniper Junos devices
  • F5 BIG-IP Load Balancers
  • IBM's IMM out of band management cards
  • Dell's iDRAC out of band management cards
  • VMWare ESX Accounts

Extensible Design

As the Password Reset feature is designed around the use of PowerShell scripts, it provides a flexible architecture where customers can modify the default scripts provided for their own environment, or create their own to meeting the requirements of their own infrastructure.

Connecting to Windows Servers to perform password resets, simply uses the power of PowerShell Remoting - which a lot of customers already use to manage their environment. Connecting to Linux/Unix/Routers/Switches can be achieved via SSH logins directly from the PowerShell Reset script, an connecting to database servers uses standard connectivity methods available in PowerShell and .NET.

Email Reports

When a Password Reset occurs, one or more emails are sent to the appropriate users informing them of the status of the reset. The provided PowerShell scripts include extensive error checking, so if errors were to occur, they would be highlighted in the resulting email explaining what the issue was e.g. the Host was turned off and could not be reached.

If in the event a Password Reset where to fail, you can easily reschedule the attempt on the screen Hosts -> Pending Password Resets, or let the current schedule execute at the expected time the following day.

Password Validation

In addition to performing Password Resets, you can also perform On-Demand or Scheduled validation (Heartbeat Validation) of the accuracy of passwords in your environment. Password Validations can be done for:
  • Active Directory
  • Windows Accounts
  • Cisco Routers and Switches
  • Linux Accounts
  • Microsoft SQL Accounts
  • MySQL Accounts
  • Oracle Accounts
  • HP iLO out of band management cards
  • HP H3C switches and routers
  • HP Procurve switches and routers
  • Juniper ScreenOS firewalls
  • Juniper Junos devices
  • HP iLO out of band management cards
  • F5 BIG-IP Load Balancers
  • IBM's IMM out of band management cards
  • Dell's iDRAC out of band management cards
  • VMWare ESX Accounts

Account Discovery

To automate the process of performing Password Resets in your environment, there are several 'Discovery Jobs' available to discover the following objects on your network:
  • Windows Hosts
  • Local Administrator Accounts on Servers and Workstations
  • Windows Services, IIS Application Pools and Schedule Tasks which are using accounts as their security context for execution or functionality