Re: DOMAIN CONTROLLER STOLEN...WHAT NEXT?

From: Bruce Martins (BMartins_at_extend.COM)
Date: 06/29/05

  • Next message: StefanDorn_at_bankcib.com: "Re: Local admin password" 
    Date: Wed, 29 Jun 2005 12:53:58 -0400
To: <bob8600bob@hotmail.com>, <forensics@securityfocus.com>, <focus-ms@securityfocus.com>, <security-basics@securityfocus.com>

    Remove dc from domain
    If another dc still part of that domain force it to take the fsmo roles change admin passwords of course
    Bruce Martins
    Systems Administrator
    EXTEND>>MEDIA
    190 Liberty Street
    Toronto, Ontario
    Canada
    M6K 3L5
    _______________________
    e:bmartins@extend.com
    t: (416) 535-4222 ext. 2307
    f: (416) 535-1201
    http://www.extend.com
    --------------------------
    Sent from my BlackBerry Wireless Handheld

    -----Original Message-----
    From: BoB Taylor <bob8600bob@hotmail.com>
    To: forensics@securityfocus.com <forensics@securityfocus.com>; focus-ms@securityfocus.com <focus-ms@securityfocus.com>; security-basics@securityfocus.com <security-basics@securityfocus.com>
    Sent: Tue Jun 28 21:18:33 2005
    Subject: DOMAIN CONTROLLER STOLEN...WHAT NEXT?

    Recently we had a domain controller stolen from a field office. We have
    taken some steps to reduce our risk. I have researched some books and some
    of the security site for a checklist or a set of recommended minimum steps
    that should be taken to ensure we are not at risk. Can anyone point me in
    the right direction or make some recommendations?

    Thanks, Bob

    _________________________________________________________________
    Don't just search. Find. Check out the new MSN Search!
    http://search.msn.click-url.com/go/onm00200636ave/direct/01/

    ---------------------------------------------------------------------------
    ---------------------------------------------------------------------------

    ---------------------------------------------------------------------------
    ---------------------------------------------------------------------------

  • Next message: StefanDorn_at_bankcib.com: "Re: Local admin password"

    Relevant Pages

    • DOMAIN CONTROLLER STOLEN...WHAT NEXT?
      ... I have researched some books and some ... of the security site for a checklist or a set of recommended minimum steps ... that should be taken to ensure we are not at risk. ... Check out the new MSN Search! ...
      (Focus-Microsoft)
    • Re: FSMO - can I turn on a DC after its PDCe role has been seized?
      ... Have a loo in the Operations Master Role Functionality Risk Assessment ... and still doing the DCPromo to be safe. ... vacation the domain controller that holds all of my FSMO roles ...
      (microsoft.public.windows.server.active_directory)
    • RE: Domain Controller Best Practice - Thanks!
      ... Domain Controller Best Practice - Thanks! ... security risk by allowing your DC to also function as a file server". ...
      (Focus-Microsoft)
    • Re: FSMO - can I turn on a DC after its PDCe role has been seized?
      ... RID Masters such an excessive risk that I would NEVER do ... Either reformat and rebuild from scratch or dcpromo /foreceremoval ... This server also hosted my DHCP server. ... another domain controller so DHCP could be installed and authorized on ...
      (microsoft.public.windows.server.active_directory)
    • Re: FSMO - can I turn on a DC after its PDCe role has been seized?
      ... PDCe's are minimal risk. ... RID Masters such an excessive risk that I would ... do so ONLY to perform the DCPromo ... another domain controller so DHCP could be installed and authorized on ...
      (microsoft.public.windows.server.active_directory)
    • Quantcast