Clear Text Passwords in Unattend.xml


Updated: May 13, 2016

Applies To: System Center 2012 R2 Virtual Machine Manager

There is a possibility that if the installation of a VMM host fails to complete successfully, the installation process might not delete some temporary files. In this situation, a file named unattend.xml might remain on your computer. It is possible that unencrypted passwords might be visible in this file. To improve security, we recommend the following:

  • Manually delete the file named unattend.xml.

  • During installation, use an account with only domain join privileges, not necessary a full administrator’s account.