Add Admin user with functionality like Microsoft LAPS

expand collapsive

I have been a long-time user of Microsoft LAPS and would like to have similar functionality in Hexnode across different operating systems.

Local Administrator Password Solution (LAPS) is a function that prevents using the same administrative passwords across different endpoints/devices. It regularly changes the passwords and enables management software to retrieve the correct password for accessing the devices.

I will suggest adding to the function of creating an administrative user when enrolling the endpoint.

The extra feature should create a new user with a random password and store the user credentials in Hexnode.
Hexnode will maintain this user and regularly rotate the password to prevent the lateral movement of an attacker across endpoints.

The password should be available for Hexnode administrators and can also be used for accessing the endpoint and executing scripts and functions that require local user credentials.

The function will also enable a Hexnode admin to hand the password out to a user if they have locked themselves out of their profile, knowing that the password will be rotated and not present any security risk.

All Replies

  • Hello, welcome to Hexnode Community!

    We appreciate your valuable suggestion and will definitely take it up with the respective teams. We’ll surely keep you posted on the same.

    Chloe Edison,
    Hexnode UEM