Protect against manual changes of password

This policy enables or disables detection of manual changes of password of managed local administrator account.

If you enable this policy, and someone manually changes password of managed local administrator account, this change is detected during next GPO refresh, and password change is immediately enforced.
This enforces keeping password reported in AD in sync with currently set on managed local administrator account.

If you disable this policy, detection of manual password changes of is NOT performed.

If you do not configure this policy, detection of manual password changes is performed.


Supported on: At least Windows Vista
Registry HiveHKEY_LOCAL_MACHINE
Registry PathSoftware\Policies\Microsoft Services\AdmPwd
Value NameManualPasswordChangeProtectionEnabled
Value TypeREG_DWORD
Enabled Value1
Disabled Value0

admpwd.e.admx