Click here to get back home

protect admins account
 HomeNewsGroups | Search | About
Login Password
Register Now!
 microsoft.public.windows.server.security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content
Subject Author Date
protect admins account Andrey Vasylenk 06-07-2007
Posted by Andrey Vasylenk on June 7, 2007, 10:19 am
Please log in for more thread options
 Hi!
How can I protect admins account from lock out in case
of external intrusion?
What methods MS recommend to protect admins
password and accont?

Regards!


Posted by Roger Abell [MVP] on June 7, 2007, 1:28 pm
Please log in for more thread options
 Andrey

You really only need to ask a question once, and when someone
has time and info to share they will do so.

If your environment has lockout defined, then any account will
get lock it the thresholds are triggered. One does not exempt a
selection of accounts from the lockout policy. However, one
can look at alternatives, such as requiring those account to use
smartcard login.

Many now recommend not having a lockout policy as it can
cause denial problems and increase helpdesk costs.

The general recommendation for highly priv'd accounts is to
use a form of two-factor authentication (eg. smartcard) or if
using username/password then use long passphrases (such as
"This iS my 1 and only pwd!@#" or better yet, include some
alt key combos).

> Hi!
> How can I protect admins account from lock out in case
> of external intrusion?
> What methods MS recommend to protect admins
> password and accont?
>
> Regards!
>



Posted by Andrey Vasylenk on June 11, 2007, 7:48 am
Please log in for more thread options
Roger, big thank you!

Similar ThreadsPosted
How protect Administrators account and passwords June 7, 2007, 9:31 am
Protect Logs February 26, 2007, 5:35 am
Applications to Protect Against and Inspect Registry Changes? December 11, 2006, 3:36 pm
Clean Space 9-The best way to protect Online Privacy March 6, 2006, 9:32 pm
Windows 2003 server - How to protect my activity? July 25, 2008, 6:47 am
Windows server 2003 security. How to protect against 100's of invalid logons to the server?? August 12, 2005, 5:29 pm
log onto a DC for non domain admins November 15, 2005, 9:25 am
Local admins June 15, 2007, 2:13 am
Domain admins October 12, 2007, 9:38 am
Restricting Domain Admins June 1, 2005, 5:32 pm

Our other projects:

Art Dolls, Fairies and Mermaids - Sunnyfaces.net

Roy's Linux, Programming and Search Engines messages

1-Script XML SitemapXML Sitemap