• State Verified Answer
  • +2 person also asked this people also asked this
  • Locked Locked
  • Replies 3 replies
  • Subscribers 64 subscribers
  • Views 11254 views
  • Users 0 members are here
Options
Related
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Support LAPs in Active Roles

marcos.ortolani
over 7 years ago

Hello,

 

Is there any add-on to use LAPs in Active Roles? I can see the attribute but don´t have options to set a new date for expirate password.

 

Tks

  • +1 over 7 years ago

    By LAPs I assume you mean Local Administrative Passwords?

    You should be able to expose the attribute in the Web UI.

    The tricky bit is setting the value because it uses a long int (I believe) to store the value.

    It might be better to create & expose a virtual attribute (for example, edsvaLAPExpiresDate) - and use an ARS workflow to catch a modification to this and then use the appropriate LAP Powershell cmdlet to translate your desired data and set the expiration for you.

  • 0 over 7 years ago
    In our company, ARS admins cannot/shouldn't adjust the date either - it's set via GPO and the workstation knows when it's time to change it. When it does, it writes the new pass + new expiry date and job done. I only use ARS to expose the current pass to admins, not to allow them to make changes.
  • 0 over 6 years ago
    I developed the process using VA, script policies..