Disabling Administrator Acount

Hello All,

The best practise for securing AD is to disable the administrator
acount. Clearly you will need in advance to have created a sufficient
number of other administrators so that you reduce the chance of
locking yourself out completely.


However, are there other issues that you might run into. Is the
administrator account referenced directly anywhere, on the box, in
the
regsitry or within AD that could cause issues.


I have created a user account with the same group membership as
"administrator" but still occassionally have problems that seem to
point towards permissions issues.


Any thoughts?


Cheers


James

.

Relevant Pages

  • No Login Necessary ?
    ... his vendor might have selected Automatic login as ... Administrator during setup. ... this practise is very bad as anyone can come and fiddle ...
    (microsoft.public.windowsxp.security_admin)
  • Disabling Administrator Acount
    ... The best practise for securing AD is to disable the administrator ... acount. ...
    (microsoft.public.win2000.active_directory)
  • Re: Secure and Reliable?
    ... >administered by people who can't spell computer, or an operating system that's ... >securing his system should not have any more trouble securing his system than ... >a similarly well-qualified administrator on most other platforms. ...
    (comp.security.misc)
  • Re: user acounts
    ... > cant get into my acount or create a new one. ... Tried using the other Administrator user? ... you might need to hack your password. ...
    (microsoft.public.windowsxp.help_and_support)
  • Re: Administrator acount lost/disapeard
    ... When you create another user account, the Administrator account becomes "hidden". ... For XP Pro: Press CTRL-ALT-DEL twice at the Welcome Screen, with no other users logged on. ... This small VB application will make the registry change necessary for the Administrator account to be available on the Welcome Screen. ... There are another acount availible for login that has ...
    (microsoft.public.windows.mediacenter)