Are you concerned about credential theft?
When Windows clients or servers are deployed using the same local Administrator username and password an attacker only needs to compromise one system and use the acquired credentials to laterally move to other systems. To prevent this from happening, Windows systems must have a unique and periodically changed password for the local administrator account. The Local Administrator Password Solution provides the required functionality to configure Windows systems with unique randomly generated passwords and stores these securely in Active Directory.
Our Microsoft Local Administrator Password Solution (LAPS) Implementation Service supports customers with the planning and deployment of LAPS within their environment to prevent attackers from applying credential theft and lateral movement attacks.