Summary
PXE (Preboot eXecution Environment) boot passwords in ConfigMgr are a security feature to protect the PXE boot process from unauthorized access. When attempting to network boot from the PXE-enabled distribution point, the user must enter a password to access the boot media. The password is configured in the PXE settings for the distribution point (Figure 1).
Figure 1 - Distribution Point PXE Settings
Linked Defensive IDs
- PREVENT-6: Configure a strong PXE boot password
- PREVENT-7: Disable command support in PXE boot configuration
- PREVENT-21: Restrict PXE boot to authorized VLANs
Associated Offensive IDs
References
- Microsoft, Understanding PXE Boot
- Christopher Panayi, Identifying and Retrieving Credentials From SCCM/MECM Task Sequences
- Christopher Panayi, Pulling Passwords Out of Configuration Manager
- Christopher Panayi, PXEThief
- Christopher Panayi, AES-128 ConfigMgr CryptDeriveKey Hashcat Module
- Carsten Sandker, pxethiefy