In this article, you will learn how to execute the function of password rotation in Windows servers.

Some passwords may have password rotation turned off. To activate, access the Passwords menu and click on the password you want to edit:

Once done, access the Password Rotation tab and enable the option that appears and click Save:

Navigate to the Passwords menu and look for the desired credential to rotate. Click Actions->Password Rotation.

In the window that opens, click the Download Windows Script (PowerShell) button

After the download is complete, move the file to the computer that will perform the password rotation process.

In the vault again, click on the Generate key button.

Note: This key is displayed while the window is open, after closing the window the key cannot be recovered, requiring the creation of another one.

Inside the computer that will perform the rotation, open a PowerShell with Administrator privileges.

a) In the first step, you must select whether the user is local or from the Active Directory domain (Active Directory users must be in the same domain as the computer used)

b) In the second step, you must enter the key that was generated previously.

If you have problems running your script, see the Troubleshooting section to fix the problem.

The user that runs the rotation script needs to have the Reset Pasword permission and it must be with higher group level permission than the user that will have their password rotated.
​​

Found your answer? If you have any questions, send us an email! [email protected]