Sign in
 
HomeLibraryWikiLearnGalleryDownloadsSupportForumsBlogs
Note: Forums will be making significant UX changes to address key usability improvements surrounding search, discoverability and navigation. To learn more about these changes please visit the announcement which can be found HERE.
Resources for IT Professionals >
MDT 2012 U1, Windows AIK 3.1 - Local Administrator Password in Unattend.xml Saving as "PlainText"

Answered MDT 2012 U1, Windows AIK 3.1 - Local Administrator Password in Unattend.xml Saving as "PlainText"

  • Thursday, August 30, 2012 12:01 AM
     
      Has Code
    Sign In to Vote
    0

    Hi everyone,

    Prior to MDT 2012 U1, (MDT 2010) when a new task sequence was created the Unattend.xml file created and stored in the \Control folder would save the local Administrator password as "PlainText" set to "false" (hashed).

    When I created a new task sequence in MDT 2012 U1, The local Administrator password is viewable ("PlainText" is grayed-out in Windows System Image Manager as "true").

    Any adjustments I can make to 're-hash' the local Administrator account in Unattend.xml automatically again?

    Tools > Hide Sensitive Data is pre-checked... (Windows System Image Manager 6.1.7500.16385)

    I have been able to reproduce this on separate servers.

    The Help file (F1) indicates that this is default behavior for WSIM.

    C:\MDTDeploymentShare\Control\TaskSequenceID\Unattend.xml snippet:

      <settings pass="oobeSystem">
    <component name="Microsoft-Windows-Shell-Setup" processorArchitecture="x86" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State">
      <UserAccounts>
        <AdministratorPassword>
          <Value>test</Value>
          <PlainText>true</PlainText>
        </AdministratorPassword>
      </UserAccounts>
      <AutoLogon>
        <Enabled>true</Enabled>
        <Username>Administrator</Username>
        <Domain>.</Domain>
        <Password>
          <Value>test</Value>
          <PlainText>true</PlainText>
        </Password>
        <LogonCount>999</LogonCount>
      </AutoLogon>

    Cory | Find me: Wordpress | Twitter: @stealthfield

     

All Replies

  • Friday, September 07, 2012 2:39 PM
     
     Answered
    Sign In to Vote
    1
    Try this...Open your task sequence within MDT, click on OS Info, Click Edit Unattend.xml, locate where you have your admin password, remove the password, re-enter password, press Enter, save and close. If you go back, your password should not be in plain text. For some reason pressing Enter after entering the password seems to do the trick. Let me know how that works out.

    Please remember to click “Mark as Answer” on the post that helps you. This can be beneficial to other community members reading the thread.

    • Proposed As Answer by Terje With Lunndal Thursday, September 13, 2012 11:51 AM
    • Marked As Answer by stlth Thursday, September 13, 2012 9:11 PM
    •  
     
  • Thursday, September 13, 2012 9:12 PM
     
     
    Sign In to Vote
    0

    Hi Hans,

    That seems to work.

    Thanks.

    Cory | Find me: Wordpress | Twitter: @stealthfield

     
  • Friday, September 14, 2012 3:56 AM
     
     
    Sign In to Vote
    0
    Excellent! You are very welcome, Cory!

    Please remember to click “Mark as Answer” on the post that helps you. This can be beneficial to other community members reading the thread.