Solved

Remove Administrator

Posted on 2006-06-16
8
288 Views
Last Modified: 2010-04-18
I am trying to remove an administrator profile (e.g. joeadm ) off of a Windows 2003 server. I have tried logging in as a domain administrator as well as a local administrator. When I navigate to user profiles, I can see the profile in the list. However when I highlight it to remove it, "delete" will not highlight. I cannot find a trend here, as I am able to highlight other admin names ( e.g. bobadm ) and it highlights the "delete" button. Please tell me how to remove this user profile, as I am getting error logs with his account name in them ( e.g. 1030, 1060, other kerbos/LDAP issues ).

Thanks,

C
0
Comment
Question by:cmoerbe
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 4
8 Comments
 

Author Comment

by:cmoerbe
ID: 16920495
By the way, I was considering creating a new generic account, then using the copy to function, and just copy that profile over the admin profile. This is in an attempt to "dumb down" the admin accounts rights and then giving me the ability to delete it. Its just a shot in the dark, but I didnt want to do it until I was able to bounce some other ideas off of the problem.
0
 
LVL 26

Assisted Solution

by:Pber
Pber earned 250 total points
ID: 16920733
Log on as another user then navigate to c:\Documents and Settings and delete the profile from there.  If you want to delete the profile from the registry as well (which will remove it from the user profile list) navigate to the following key:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\ProfileList

Go through the list of SIDS until you find the one for the user.  Look for the value in ProfileImagePath.

The next time you log in with the administrator account it will recreate the profile.  

Hope that helps
0
 
LVL 26

Expert Comment

by:Pber
ID: 16920784
I failed to mention in my previous post to delete the key corresponding to the SID of the profile you wish to delete.  You can also just rename the key as well as the profile name under Documents and Settings just so you have backup.  This way the user will get a new profile and you can go back if needed.
0
Free Backup Tool for VMware and Hyper-V

Restore full virtual machine or individual guest files from 19 common file systems directly from the backup file. Schedule VM backups with PowerShell scripts. Set desired time, lean back and let the script to notify you via email upon completion.  

 

Author Comment

by:cmoerbe
ID: 16920900
I tried to delete the user from Documents and Settings already, but it keeps giving the error message " Cannot delete NTUSER.DAT: It is being used by another person or program." However, I know that the user is not logged in or using any portion of that server. I also checked shared folders - sessions - and verified that it wasnt using his profile behind the scenes. Should I go with the registry change first, and then try to delete it?
0
 
LVL 26

Expert Comment

by:Pber
ID: 16921036
Reboot the box if you can and then delete the profile right away.  Try connecting to the machine remotely (i.e. \\machine\c$) and deleting it that way as well.
0
 

Author Comment

by:cmoerbe
ID: 16921505
Well its a production server, so I will have to wait until after hours to try that approach.
Also I cannot UNC to the C$. It wont allow access, for security reasons. I think maby starting in safe mode might help, but again that will have to wait until non-business hours.
0
 
LVL 26

Accepted Solution

by:
Pber earned 250 total points
ID: 16921583
You might be able to do this during production...

If you delete/rename the registry key and then try to login with the administrator account, it will try and create a new profile under documents and settings

The old profile will be:

c:\documents and settings\administrator

The new profile will be

c:\documents and settings\administrator.domain
or
c:\documents and settings\administrator.000

You will see this reflected in the ProfileImagePath in the registry.  If you want to clean this up later after you rebooted and deleted the original profile, you can rename the administrator.000 to administrator and update the ProfileImagePath in the registry to point to the renamed path.
0
 

Author Comment

by:cmoerbe
ID: 16922552
I found out what the problem was. There was a disconnected remote session sitting in terminal services manager. (I dont know why I didnt think about that earlier )  It kept trying to reconnect to the session. I went into term serv mgr, removed the disconnected session, and then it allowed me to go in and delete both profiles. ( joeadm and joeadm.domain ). I do appreciate your reply though, and will use that as another tool if I were to run into this type of problem again.

Thanks!

C
0

Featured Post

Creating Instructional Tutorials  

For Any Use & On Any Platform

Contextual Guidance at the moment of need helps your employees/users adopt software o& achieve even the most complex tasks instantly. Boost knowledge retention, software adoption & employee engagement with easy solution.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old operating system vulnerable and potentially out of compliance in many organisations around t…
While rebooting windows server 2003 server , it's showing "active directory rebuilding indices please wait" at startup. It took a little while for this process to complete and once we logged on not all the services were started so another reboot is …
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…
In this video you will find out how to export Office 365 mailboxes using the built in eDiscovery tool. Bear in mind that although this method might be useful in some cases, using PST files as Office 365 backup is troublesome in a long run (more on t…

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question