domain admin account impersontating
- From: "Pedro Leite" <aa>
- Date: Mon, 6 Nov 2006 13:20:21 -0000
good afternoon
can anyone explain this behaviour ?? as described
setup is sbs 2k3
recently added a new pc to the network and to the domain for updates and
application deployment.
so, i named the pc admin account the same as the domain admin account and
gave it the same password.
now, the new pc is off the domain but the admin account is still the same
with the same domain admin password.
whenever i log to the pc with the admin account, i have full control over
the domain machines, c$ share, all users document folders, all shares,
direct internet acces through the firewall...
questions, is the domain admin sid the same as a local admin sid's account
?? the authentication being made with a blend of username and password, all
mixed up, hashed whatever and then sent to validation ??
isn't the domain admin account user equal to domainname\admin and the local
admin, machinename\admin ??
for my knowledge please comment on the above
thank you
Pedro Leite
----------------------------------------------------------------------------
---
.
- Follow-Ups:
- Re: domain admin account impersontating
- From: Roger Abell [MVP]
- Re: domain admin account impersontating
- Prev by Date: Role-based security from Windows Server 2003 Security Guide gives problems
- Next by Date: Re: domain admin account impersontating
- Previous by thread: Role-based security from Windows Server 2003 Security Guide gives problems
- Next by thread: Re: domain admin account impersontating
- Index(es):
Relevant Pages
|
