Re: local passwords mysteriously changed on several networked comp

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

"=?Utf-8?B?QVNtaXRoMTc3Mw==?="
<ASmith1773@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in
news:7BA6038E-F5A8-4EE2-B4B3-3DA2129DBC59@xxxxxxxxxxxxx:

> I did this as you suggested. You are right, for many of the
> machines it appears that there has not been a password change near
> the time that this happened and further the dates reported for the
> last change suggest the last person to do it was me.
>
> But I'm still stumped here, why are all our PCs suddenly rejecting
> my login credentials? I still have accounts on all the computers,
> my password just doesn't seem to get me in. And yes, I am
> definitely typing in my login/password, which I've used for years
> on a daily basis, correctly.
>
> Is there any known security feature that can flag all computers
> with and account for "Andy" to not let that user log in? I should
> have also mentioned that I am the only user that seems to be
> having the problem. Thanks again.
>
>

If you would entertain the idea that someone is doing this deliberately
to you, there is the program "addusers.exe" provided in the W2K
resource kit that can remotely mass-modify user accounts. In addition
to mass-creating accounts, this program can also mass-modify, remotely
disable accounts, or mass-delete accounts as well. The person using
this program would need to have administrator priviledges on all target
machines. For some more info, see:

"AddUsers Automates Creation of a Large Number of Users"
<http://support.microsoft.com/default.aspx?scid=kb;en-us;199878>

HTH,
John
.

Relevant Pages

  • Re: Local Accounts
    ... All 3 users had accounts on all 3 computers. ... Well maybe true but when the client machines were not in a domain we had sofware installed that we did not want to reinstall when on the domain. ... The local admin account can be useful for some system changes, ...
    (microsoft.public.windows.server.sbs)
  • Re: Crypt questions
    ... For the right account it can be decrypted if both accounts have ... If the machines are not both ... If I encrypt the harddrives on ... will a theif be able to decrypt the data? ...
    (microsoft.public.windowsxp.security_admin)
  • Re: Disabling Interactive Logon Against Security Group
    ... Essentially this is to secure half a dozen guest accounts on domain of ... question "disable interactive logon privilages against specific OU/User ... Where I follow least privilege this is a total non-issue, as the machines ... If you set this in a GPO then the list that is to be denied that you ...
    (microsoft.public.security)
  • Re: Terminal release ip command?
    ... Apart from networking between the two machines right:-) ... pick up a single DHCP address from your ISP, ... DHCP IP addresses on your own private network and NAT taking care ... the case of free dial-up accounts where an ISP may create far more ...
    (comp.sys.mac.system)
  • Re: Domain Users to have Local Admin rights
    ... Refreshed group policy on the other machines. ... machine, that kinda startup script? ... We have various admin accounts other then administrator ...
    (microsoft.public.windows.server.security)