|
Posted by Roger Abell on August 13, 2005, 6:35 am
Please log in for more thread options I do not believe that is a viable route, as the ADRM is using
the old local SAM so the account will not be in AD.
--
Roger Abell
Microsoft MVP (Windows Security)
MCSE (W2k3,W2k,Nt4) MCDBA
> Since booting into ADRM using the ADRM password logs you on indirectly
with
> the Administrator account, you could try to create a new "backup"
> administrator account using "net user /add" in command prompt and add this
> to the "Administrators" group, also when booting into ADRM. You can then
> logon using this account in "normal" boot and change the original
> Administrators name.
>
>
> > Greetings,
> >
> > I am stumped as to whether or not this can be resolved, but a client set
> > the Rename Administrator Account setting in the Domain Controller
Security
> > Policy to a name containing the '@' character. Of course now, she can't
> > log on to the domain with that account and as luck would have it -- she
> > doesn't have any other accounts with domain admin privelages and this is
> > the only domain controller. It is a W2K3 DC. Does anyone know if the
DC
> > Security Policy can be reset -- at least the Rename Admininstrator
Account
> > setting (I know -- this sounds fishy from a security standpoint and
truly
> > don't expect an answer on that one) or is there a way to log on to the
> > system using the account name with '@' signs in it. I had her try
> > entering DOMAIN\@ministrator in the username with no luck. I am
assumming
> > that it is looking at the information after the '@' sign as being the
> > domain info and that is why it is failing. She does have the password
for
> > the Active Directory Restore Mode if it helps.
> >
> > Anyone have any insight?
> >
>
>
| 
XML Sitemap