Re: How to rename the W2K AD Administrator account
From: Steven L Umbach (n9rou_at_nospam-comcast.net)
Date: 04/01/05
- Next message: Steven L Umbach: "Re: how to apply w2k security to w2k member servers under w2k3 domain?"
- Previous message: Steven L Umbach: "Re: How do I tell if an attack is from an internal or external source"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 31 Mar 2005 23:06:00 -0600
If you are going to do it for just the built in administrator account for
the domain you can just do it in AD Users and Computers. If you use Group
Policy for the domain controllers it will enforce it however in case another
administrator tries to change it to something else. While it is often
recommended, in reality it is of little value in my opinion as there are
widely available tools that can find the administrator account based on it's
sid which can not be changed. A better solution would be to make sure the
administrator account has a very complex password or passphrase that could
never be guessed or cracked. --- Steve
"Woodsy" <Woodsy@discussions.microsoft.com> wrote in message
news:AE2A1829-BC10-47F9-8274-5E90FF3EC75A@microsoft.com...
>I have read several articles on how best to rename the Administrator
>account
> in W2K AD and some say use a GPO and others say just right click on the
> account and rename it.
>
> What is the prefered option or do I need to do them both?
>
> Thanks,
> Paul
- Next message: Steven L Umbach: "Re: how to apply w2k security to w2k member servers under w2k3 domain?"
- Previous message: Steven L Umbach: "Re: How do I tell if an attack is from an internal or external source"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
