Sign in
 
HomeWindows 8Windows 7Windows VistaWindows XPMDOPWindows IntuneLibraryForums
Windows Client >
How To encrypt a password in unattendend.xml

Answered How To encrypt a password in unattendend.xml

  • Thursday, December 16, 2010 8:34 AM
     
     
    Sign In to Vote
    0

    Hi @ll,

    I want to encrypt the passwords in the unattendend.xml (windows 7). Now there all in PlainText.

    <LocalAccount wcm:action="add">
                            <Password>
                                <Value>P@ssw0rd</Value>
                                <PlainText>true</PlainText>
                            </Password>
                            <Description>LocalAdmin</Description>
                            <DisplayName>LocalAdmin</DisplayName>
                            <Group>administrator</Group>
                            <Name>LocalAdmin</Name>
     </LocalAccount>

    Which encryption is used? How can I generate the encrypted values?

    Best regards,
    Lucian

     

All Replies

  • Friday, December 17, 2010 8:32 AM
    Moderator
     
     Answered
    Sign In to Vote
    1

    Hi,

     

    Thanks for posting in Microsoft TechNet forums.

     

    Open Windows SIM.

    Open a Windows image. For more information, see Open a Windows Image or Catalog File.

    Open or create an answer file. For more information, see Open an Answer File.

    Add one of the following password settings to your answer file:

    Microsoft-Windows-Shell-Setup | AutoLogon | Password

    Microsoft-Windows-Shell-Setup | UserAccounts | AdministratorPassword

    Microsoft-Windows-Shell-Setup | UserAccounts | LocalAccounts | LocalAccount | Password

    Add a value to one or more of the password settings.

    On the Tools menu, check Hide Sensitive Data. This ensures that when the answer file is saved, the password information will be hidden.

    Save the answer file and close Windows SIM.

     

    Best Regards

    Magon Liu

    TechNet Subscriber Support in forum. If you have any feedback on our support, please contact tngfb@microsoft.com

     

    Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread. ”
    • Marked As Answer by Lucian85 Friday, December 17, 2010 12:18 PM
    •  
     
  • Thursday, April 19, 2012 8:39 PM
     
     
    Sign In to Vote
    0

    but how do I encrypt the domain password portion within x86_microsoft-windows-unattendjoin_neutral | identification | credentials | password

    the method described above will only encrypt the following respectively.  

    Microsoft-Windows-Shell-Setup | AutoLogon | Password 

    Microsoft-Windows-Shell-Setup | UserAccounts | AdministratorPassword

    Microsoft-Windows-Shell-Setup | UserAccounts | LocalAccounts | LocalAccount | Password

    would adding the domain administrator password to Microsoft-Windows-Shell-Setup | AutoLogon | Password and then removing the identification portion of x86_microsoft-windows-unattendjoin_neutral | identification | credentials | password achieve this? -- **if so?, what other implications would this have?  would systems always autologon as the domain administrator?

    Dustin