Using [net user administrator "passwd@" ] to change the password, there is a probability that the password change will fail

Question

The super managed user uses net user administrator "passwd@" to change the password. There is a probability that the password change will fail. The event viewer records 4724 events, and the change time is not updated through net user administrator. Login with old password succeeded, but login with new password failed

Answer 1

Hi there,

Can you see any other event ID ?

Event ID 4724 is generated every time an account attempts to reset the password for another account (both user and computer accounts). If the new password fails to meet the domain password policy (or local password policy in local user accounts) then a failure event is recorded.

This is an information event and no user action is required.

4724(S, F): An attempt was made to reset an account's password. https://learn.microsoft.com/en-us/windows/security/threat-protection/auditing/event-4724

---------------------------------------------------------------------------------------------------------------------------------------

--If the reply is helpful, please Upvote and Accept it as an answer--

Answer 2

Don't use "net user", use Powershell and trap the error. Do something to alert an admin that the password change failed.

$user = 'testuser'  
$pswd = ConvertTo-SecureString -String "1234" -AsPlainText -Force   
try {  
    Set-LocalUser $user -Password $pswd -ErrorAction Stop  
} catch  {  
    "Password update failed!"  
    $_.Exception  
    "Do something here to notify someone."  
}