RE: Windows 2000 Administrator lockout

From: Rob Morgan (rob.morgan_at_blueyonder.co.uk)
Date: 08/18/04

  • Next message: Ross, George: "RE: Event Log Monitor"
    To: "'Robert Ritchey'" <rritchey@eods.com>
    Date: Tue, 17 Aug 2004 23:44:03 +0100
    
    

    For Symantec, the password is stored in a registry key. I don't know it's
    exact name off hand but use regedit to search for password. Delete the
    value and the password defaults to Symantec.

    It worked for me a few months ago, hope it works for you too.

    Regards,
    Rob.

    -----Original Message-----
    From: Robert Ritchey [mailto:rritchey@eods.com]
    Sent: 13 August 2004 19:55
    To: security-basics@securityfocus.com
    Subject: Windows 2000 Administrator lockout

    Hello All,

    The network that I have is rather small. 1 server, and 4 workstations. I
    inherited the systems. There has been no administrator working there for a
    little over a year. What administrator that was there, was very much
    non-technical.

    When the network was built whoever built the server installed everything
    they possibly could. This system now how few main functions:
    1. File server
    2. Internet Gateway
    3. Symantec Virus manager

    Nobody knows any of the passwords for anything on the system. Any of the
    passwords that are in use are not allowed administrator access. I do mean
    for anything! I can't even get Symantec to update virus signatures, as I do
    not have a password to do the update with. The signature is like 2003 date.

    It is just very frustrating!

    I am looking for options, before I have to go and reformat and rebuild. This
    would in some ways make life simpler, there are wrinkles in that all of
    there operational data and other services are on the server. We are
    currently moving foreword with a plan to rebuild. This will happen; I would
    rather pick the time to do it. Rather than have it forced on me.

    Does anyone know of any other way to take control of this machine and
    network.

    Thanks for your time and any ideas will be appreciated.

    Robert Ritchey

    ---------------------------------------------------------------------------
    Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
    any course! All of our class sizes are guaranteed to be 10 students or less
    to facilitate one-on-one interaction with one of our expert instructors.
    Attend a course taught by an expert instructor with years of in-the-field
    pen testing experience in our state of the art hacking lab. Master the
    skills
    of an Ethical Hacker to better assess the security of your organization.
    Visit us at:
    http://www.infosecinstitute.com/courses/ethical_hacking_training.html
    ----------------------------------------------------------------------------

    ---------------------------------------------------------------------------
    Computer Forensics Training at the InfoSec Institute. All of our class sizes
    are guaranteed to be 12 students or less to facilitate one-on-one
    interaction with one of our expert instructors. Gain the in-demand skills of
    a certified computer examiner, learn to recover trace data left behind by
    fraud, theft, and cybercrime perpetrators. Discover the source of computer
    crime and abuse so that it never happens again.

    http://www.securityfocus.com/sponsor/InfoSecInstitute_security-basics_040817
    ----------------------------------------------------------------------------


  • Next message: Ross, George: "RE: Event Log Monitor"

    Relevant Pages

    • restore Administrator password
      ... This server is not any domain controler. ... I can not login there because I do not know Administrator ... to facilitate one-on-one interaction with one of our expert instructors. ... Attend a course taught by an expert instructor with years of in-the-field ...
      (Security-Basics)
    • Re: Cant see performance report, etc. SBS2003
      ... When you install Symantec EP it adds Symantec to the web-sites in IIS. ... Reporting in server management does not work and give HTTP 404 error. ... Reinstall Monitoring component: ...
      (microsoft.public.windows.server.sbs)
    • Re: strange Symantec behavior
      ... When you got the disabled icon were your network cards status visible. ... Symantec Gear Security is stopped. ... Undelete Server Edition 4.0. ...
      (microsoft.public.backoffice.smallbiz2000)
    • RE: SBS 2003 R2 hangs at "Applying your settings"....
      ... contact CSS support, since there could have more interactive troubleshoot ... Due to support nature of newsgroup, it is not convenient to be ... server from the internet and perform a clean boot on the server. ... The issue should be related to Symantec Corp 10.1 ...
      (microsoft.public.windows.server.sbs)
    • Re: symantec antivirus can not auto update behind isa 2004
      ... Have you considered altering your Symantec configuration slightly? ... is possible and preferred using Symantec Enterprise to have your Server ... > user that have an allow rule on the ISA Server." ... >> How didi you schedule LiveUpdate? ...
      (microsoft.public.isa.configuration)