Our small Windows Active Directory domain is undergoing a security review by our grandparent company. I am the Domain Administrator of this domain of about 25 Win2K3, Win2K8, Enterprise & Standard machines. One problem discovered was the old lm hash vulnerability even though the standard Group Policy setting fix has been implemented since at least 2006.
According to the security review; the ASPNET
account is vulnerable on several machines. All I need to do to correct this is reset the password, even if to the same password.
I have been researching this and have found no way to do this. This only thing I can think of is a shotgun approach of uninstalling and reinstalling .Net Framework
versions using aspnet_regiis.exe
. Even then I'm not sure that would work.
I am open to any and all suggestions as to how to accomplish this task.