KRBTGT Account - Reset Keys
Summary
This document presents a script used to reset the KRBTGT Active Directory account, adapted from New-KrbtgtKeys.ps1.
This script is provided "without warranty."
It is essentially a streamlined version of the adapted script designed to always run the live account reset, with some modernization of PowerShell included.
Due to this, results are not guaranteed. If at all possible, the script should always be run manually, and logins should be immediately tested.
YOU HAVE BEEN WARNED
Sample Run
Dependencies
Process
See RSM - Active Directory - Agnostic - Reset-KrbtgtKeys for process details.
Output
- Script log
- Local file on the computer