|
Posted by Special Access on July 6, 2007, 4:41 pm
Please log in for more thread options On Fri, 6 Jul 2007 10:43:15 -0600, "Jeff"
>Due to turnover in our IT shop we are trying to tighten up security. The
>first order of business is to do something with out Administrator account.
>The Administrator account was renamed a long time ago to a name within the
>naming scheme of the rest of the users. Since all of the people who left our
>shop know this account, what is the best way to change this? Should I rename
>the account and give it a new password, or should I copy the account. My
>concern is that if I rename the account I will cause problems for any server
>applications that are relying on it. What is recommended in this scenario?
>
>Also, I want to change the username and password for the local admin account
>throughout the domain. Procedure for this please.
>
IIRC, renaming the account keeps the SID the same, which is what
security and other access are based on. Renaming is much better than
creating new... With that said, your IT security may say renaming an
account is a bad thing (ours did). Either way, new password is
definately in store (but you already knew that). IF the account is
being used for services, you may run into trouble once you change the
password though.
I seem to remember someone saying you could change the password for
the local admin account using GPO somehow... wish I could remember.
But you might search for it and find some relevant articles from this
NG about it as it wasn't that long ago (couple weeks at most)
Mike
| 
XML Sitemap