Disable Automatic Machine password changes

Workstations, Member servers, and Trusts all have a representative object in eDirectory/DSfW.  That object has a randomly set password when the workstation or server is joined to the domain or when a cross forest trust is established.  The workstation, server, or trust will rest that password every 30 days.

Some times that password does not make it to the object in eDirectory/DSfW and there for is not changed in the directory, but the Machine thinks it has been changed.

An option is to disable this functionality from the machine.  For a windows workstation or server joined to the domain, along with the AD DC to where the cross forest trust is established, you can disable the automatic machine password change.
Here are the steps.
  1. Start Registry Editor.  (Start,  Run, type regedit in the Open box)

  2. Locate and then click the following registry subkey:


  3. In the right pane, click the

    DisablePasswordChange entry.

  4. On the Edit menu, click Modify.

  5. In the Value data box, type a value of 1, and then click OK.

  6. Quit Registry Editor.

One Response to Disable Automatic Machine password changes

  • Pingback: Tim