Re: Local Admins

• Previous message: Perry, Brian: "RE: focus-ms@securityfocus.com"
• Maybe in reply to: CHM Security: "Local Admins"
• Next in thread: SpeedM_at_nmbc.com: "RE: Local Admins"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: focus-ms@securityfocus.com
Date: Fri, 5 Sep 2003 15:38:49 -0400

If you have perl installed, here is a script.... substitue server name,
group name, and file name if you want.

use Win32::NetAdmin;

$server = servername;
$group = "groupname";

open (OUT,">.\\info.txt");

          Win32::NetAdmin::GroupGetMembers ($server,$group,\@mg);

          $a=@mg;

               foreach (sort @mg) {
                    $i++;
                    $user=$_;
                    print OUT "$user\n";

               }

close OUT;

Best Regards / Mit freundlichen Grüßen

Jennifer Canterbury
System Administrator
its.on

                                                                                                                                           
                    "CHM Security"
                    <chmsecurity@ho To: <focus-ms@securityfocus.com>
                    tmail.com> cc:
                                          Subject: Local Admins
                    09/05/2003
                    12:33 PM
                                                                                                                                           
                                                                                                                                           

Is there an easy way to scan 2K/XP machines to determine who is a member of
the administrator groups? We are having a lot of problems with our IT
personnel adding local users as admins on their boxes which is causing us
lots of problems. We just found one user who was hitting cancel everytime
the SUS would send updates to her machine because it wasn't convenient. We
have over 1000 machines in our domain and I really don't want to try and
run
this manually, especially when there is a chance some tech might come
behind
and start adding them back.

Thanks!

---------------------------------------------------------------------------
KaVaDo provides the first and only integrated Web application scanner and
firewall security suite that prevent Web applications attacks, the most
common form of online exploitation. Download a FREE whitepaper on Security
Policy Automation for Web Applications.
http://www.securityfocus.com/sponsor/KaVaDo_focus-ms_030818
---------------------------------------------------------------------------

---------------------------------------------------------------------------
KaVaDo provides the first and only integrated Web application scanner and
firewall security suite that prevent Web applications attacks, the most
common form of online exploitation. Download a FREE whitepaper on Security Policy Automation for Web Applications.
http://www.securityfocus.com/sponsor/KaVaDo_focus-ms_030818
---------------------------------------------------------------------------

• Previous message: Perry, Brian: "RE: focus-ms@securityfocus.com"
• Maybe in reply to: CHM Security: "Local Admins"
• Next in thread: SpeedM_at_nmbc.com: "RE: Local Admins"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]