I would suggest checking the AMT documentation at:
http://software.intel.com/sites/manageability/AMT_Implementation_and_Reference_Guide/
Can you be specific as to which documentation to check for finding answers to the questions? I am interested as well to the answers and have searched, however, I have not found answers to the questions.
Thank you.
yes please specify, i read through it and didn't seem to find specific info on what i needed.
thanks
Stéphane
I have not gotten any specific answer on this or where to find it yet...
can someone help please?
thanks
Stéphane
Here is what the Intel SCS 7.0 User Guide says:
"If the ADOU has a maximum password age password policy defined in AD, the password must be replaced before it expires." So I think you set it in AD.
If you are using Intel SCS 7.0, page 15 of the User Guide (available in the download zip file) tells you how to schedule a maintenance task to reset the password.
I don't know the answer to the security implications, but I think they are greatly reduced if you set a password expiration policy.
Hi, do you have any idea who or where i could get the answers from to the security questions i have?
thanks
I have not yet gotten a response for this?
Any idea?
Can i set AD AMT object password to reset every 30days or so, will it break AMT fonctionality?
thanks
Stéphane
Currently there is no way to do that, the only way to reset the AMT password is manually.
Youcannot set the system to remind you every 30 days or so.
Sorry about the delay on your security question. I've entered an internal support request to our Intel AMT team get some help on this issue. You should be getting a reply in a few days.
Building on what Adolfo said, the maintenance tasks to reset the AD object password depend on what software you are using. Can you give me some more background on your implementation? Are you provisioning with the Intel SCS? If so, which version?
Adolfo, i am talking about the amt active directory object password.
ok thanks Steve i will wait on a reply from them.
I got one from Adolfo saying the amt password cannot be reset every 30 days but i don't beleive he is talking about the amt active directory object.
let me know
thanks.
Stéphane
Hi Dan, i am in band provisioning these clients through sccm 2007 r2
auto provisioning is set through sccm with a 3rd party cert.
if there is any other info you need let me know
thanks
Stéphane
Ah, Ok. You are in good shape then. SCCM takes care of the maintenance of the AD objects for AMT and will make sure that passwords get changed automatically in accordance with any policies you have in place in the AD.
