none
Automate Deleting Stored User Names Passwords (RunDll32.exe keymgr.dll,KRShowKeyMgr)

    Question

  • Hi guys,

    I need to be able to delete the stored user names and passwords stored on Windows XP, Vista & 7 machines.

    If you run: RunDll32.exe keymgr.dll,KRShowKeyMgr

    You will be presented with the Stored User Names and Passwords window.

    You can manually delete them, but I wish to automate it for all client machines.

    Maybe with a scripted or GPO solution?

    Can anyone help?

    Cheers, Matt.

    Thursday, October 28, 2010 2:13 AM

Answers

  • Hi Matt,

     

    Thanks for the post!

     

    Based on my experience, there’s no option for automatically delete the stored user names and passwords, you need to manually delete them.  This behavior is considering of  the security issue.

     

    If you want to some script method, you could ask questions in Script Forum to find the script solutions.

     

    Regards,

    Miya


    This posting is provided "AS IS" with no warranties, and confers no rights. | Please remember to click "Mark as Answer" on the post that helps you, and to click "Unmark as Answer" if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.
    Monday, November 01, 2010 10:13 AM

All replies

  • Hi Matt,

     

    Thanks for the post!

     

    Based on my experience, there’s no option for automatically delete the stored user names and passwords, you need to manually delete them.  This behavior is considering of  the security issue.

     

    If you want to some script method, you could ask questions in Script Forum to find the script solutions.

     

    Regards,

    Miya


    This posting is provided "AS IS" with no warranties, and confers no rights. | Please remember to click "Mark as Answer" on the post that helps you, and to click "Unmark as Answer" if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.
    Monday, November 01, 2010 10:13 AM
  • Copy cmdkey.exe to shared folder (I'm take it from windows server 2003 SP2 x86)? for example: \\domain\netlogon
    Add(create) to policy my script:

    Dim objExec, objExec2, objShell, strCommand
    Dim Data, Data2, Data3, TextStream
    Dim i
     i = 0
     strCommand = "cmd /Q /C ""\\domain\NETLOGON\cmdkey.exe /list"""
     Set objShell = CreateObject("Wscript.Shell")
     
     
     Set objExec = objShell.Exec(strCommand)
     While objExec.Status <> WshFinished
     'Wait for the command to be run completely
     Wend
     Set TextStream = objExec.StdOut

     Do While i <> 1000

      Data = TextStream.Read(1)
      If (data2 = "t" and data = ":") Then
       Data3 = TextStream.Read(1)
       Data3 = TextStream.Read(1)
       If (Data3 = vbNullChar) Then
        Data3 = TextStream.ReadLine   
        strCommand = "\\domain\NETLOGON\cmdkey.exe /delete:" & Data3
        Set objExec2 = objShell.Exec(strCommand)
        Set objExec2 = Nothing
       End If
      End If
      Data2 = Data
      i = i + 1
     Loop

     Set objExec = Nothing
     Set objExec2 = Nothing
     Set objShell = Nothing

     
     P.S. This script delete max near 10 - 12 saved passwords, if you want to delete more, increase number setps of cycle (Do While i <> 1000), approximate for plus one  = + 100
     P.S.2 I'm could not shadow execution of command "Exec" (I'm don't know how) and users at startup can see empty shell - 1 + one for each saved password (It's close after end execution)
     P.S.3 Sorry for my English, I'm from Russia.

    Monday, November 21, 2011 2:38 AM
  • did you figure out how to do that Matt? I am on the same situation here...

    Friday, November 23, 2012 4:35 PM