Clear Text Passwords in Unattend.xml

Updated: May 13, 2016

Applies To: System Center 2012 R2 Virtual Machine Manager

There is a possibility that if the installation of a VMM host fails to complete successfully, the installation process might not delete some temporary files. In this situation, a file named unattend.xml might remain on your computer. It is possible that unencrypted passwords might be visible in this file. To improve security, we recommend the following:

• Manually delete the file named unattend.xml.

• During installation, use an account with only domain join privileges, not necessary a full administrator’s account.