Re: 'Read only' Admin privileges for Active Directory environment?

From: "Saqib Ali" <docbook.xml@xxxxxxxxx>
Date: Wed, 28 Jun 2006 22:57:04 -0700

I need those rights to access the logs and other items to
investigate the it staff, it's actions, unauthorized changes to ad, run
various tools that require domain admin to extract data (I don't like
generic accounts with domain admin because now I have no idea who ran it),

Then how do you prove during the trial that the evidence was NOT
planted by InfoSec team? The argument can be made that since the
InfoSec team had admin right they could themselves have planted the
evidence

For this very same reason, in the ccriminal justice system the job of
dectective should never be performed by ADA or a DA. Infact if the
office of the DA discovers some evidence at the crime scene it almost
never admissible in the court.

--
Saqib Ali, CISSP, ISSAP
Support http://www.capital-punishment.net
-----------
"I fear, if I rebel against my Lord, the retribution of an Awful Day
(The Day of Resurrection)" Al-Quran 6:15
-----------

---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------

Follow-Ups:
- Re: 'Read only' Admin privileges for Active Directory environment?
  - From: Ansgar -59cobalt- Wiechers

References:
- Re: 'Read only' Admin privileges for Active Directory environment?
  - From: Saqib Ali

Prev by Date: Mobil Users Wireless Security
Next by Date: Re: AV tools
Previous by thread: Re: 'Read only' Admin privileges for Active Directory environment?
Next by thread: Re: 'Read only' Admin privileges for Active Directory environment?
Index(es):
- Date
- Thread

Relevant Pages

Read only Admin privileges for Active Directory environment?
... Our InfoSec team has requested Domain Admin privileges ... on the corporate Active Directory to audit the environment's security. ...
(Security-Basics)
Re: Read only Admin privileges for Active Directory environment?
... I don't see why your InfoSec team require Domain Admin rights to ... Our InfoSec team has requested Domain Admin privileges ... on the corporate Active Directory to audit the environment's security. ...
(Security-Basics)
Re: Read only Admin privileges for Active Directory environment?
... generic accounts with domain admin because now I have no idea who ran it), ... production system. ... EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE ... The NSA has designated Norwich University a center of Academic Excellence in Information Security. ...
(Security-Basics)
RE: Read only Admin privileges for Active Directory environment?
... 'Read only' Admin privileges for Active Directory environment? ... Our InfoSec team has requested Domain Admin privileges ... on the corporate Active Directory to audit the environment's security. ...
(Security-Basics)
Re: ADS Password Storage Protection
... Perhaps they grabbed the hash by getting physical access to a computer ... another computer, grab the sam file, extract the domain admin hash). ... EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE ... The NSA has designated Norwich University a center of Academic Excellence ...
(Security-Basics)