Re: Invisible Admin account
- From: "Roger Abell [MVP]" <mvpNoSpam@xxxxxxx>
- Date: Mon, 13 Feb 2006 22:30:47 -0700
I doubt you will find any joy along the lines you are considering.
As Danny stated, if they are admin they can undo anything you
have set in place.
If you had a domain then you could enforce some local config
settings in a way that could not be changed locally (like Domain
Admins in Administrators, or specific accounts log in with smart
card only). However such as these are not options for you.
Short of hacking your machines up with your own rootkit-like
functionality, they will as admins be able to see all accounts that
are defined and adjust any aspect of those accounts.
--
Roger Abell
Microsoft MVP (Windows Server : Security)
"cwjudd" <u18680@uwe> wrote in message news:5bd498031370e@xxxxxx
How can I create a local admin account with all administrator privildges
that
cannot be seen or viewed by others. The reason for this is that our
company
insists on issuing all users of all computers admin priviledges so that
they
can install applications as needed, however many of these users like to
change the administrator password on the local machines when they get
their
machines or just before they turn them into us when they are leaving the
company, making it impossible for us to get into the machine and pull data
off of it.
We run a Novell network, however we use a standard W2K Professional
operating
system as our client platform. It would be nice if we could create local
Adminstrator account that another user with administrator access could not
change the password for, or make this account invisible to all other
users.
Any suggestions would be greatly appreciated and welcomed.
.
- References:
- Invisible Admin account
- From: cwjudd
- Invisible Admin account
- Prev by Date: Re: Invisible Admin account
- Next by Date: Re: Can't upgrade Net frameWork error?
- Previous by thread: Re: Invisible Admin account
- Index(es):
Relevant Pages
|
|
