Re: builtin administrator password
- From: "Herb Martin" <news@xxxxxxxxxxxxxx>
- Date: Tue, 5 Jun 2007 14:47:46 -0500
"Li" <li.mcknight@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:e9Mvme6pHHA.3368@xxxxxxxxxxxxxxxxxxxxxxx
For some reason, I noticed that our builtin administrator password got
changed, which cause our backup unable to attach the servers. This is the
second time it happened. Can someone tell me where I can find out where
and what causes our administrator password changed?
Any response will be greatly appreciated!!!
It's pretty hard (or impossible) to tell "after the fact" but if you enable
Account Management Auditing you might see how this happens in the
future.
Of course if it is just being changed by someone (an admin?) logging
onto this account then you will see only that.
You probably should consider having a SEPARATE service account
for such things -- make the password non-expiring and cannot be
changed (also very long and complex, e.g., 20+ characters).
Make sure (tell them all and enforce it) that no admin logs on with
THE Admin account but that each uses their own admin account
so that tracking applies individually too.
And reduce the number of admins. Delegations of OUs and even
services means that you don't need as many admins as you did in the
past.
--
Herb Martin, MCSE, MVP
http://www.LearnQuick.Com
(phone on web site)
.
- References:
- builtin administrator password
- From: Li
- builtin administrator password
- Prev by Date: builtin administrator password
- Next by Date: AD Through Firewall & Trusts
- Previous by thread: builtin administrator password
- Next by thread: AD Through Firewall & Trusts
- Index(es):
Relevant Pages
|
