Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 295
  • Last Modified:

Remove Administrator

I am trying to remove an administrator profile (e.g. joeadm ) off of a Windows 2003 server. I have tried logging in as a domain administrator as well as a local administrator. When I navigate to user profiles, I can see the profile in the list. However when I highlight it to remove it, "delete" will not highlight. I cannot find a trend here, as I am able to highlight other admin names ( e.g. bobadm ) and it highlights the "delete" button. Please tell me how to remove this user profile, as I am getting error logs with his account name in them ( e.g. 1030, 1060, other kerbos/LDAP issues ).

Thanks,

C
0
cmoerbe
Asked:
cmoerbe
  • 4
  • 4
2 Solutions
 
cmoerbeAuthor Commented:
By the way, I was considering creating a new generic account, then using the copy to function, and just copy that profile over the admin profile. This is in an attempt to "dumb down" the admin accounts rights and then giving me the ability to delete it. Its just a shot in the dark, but I didnt want to do it until I was able to bounce some other ideas off of the problem.
0
 
PberSolutions ArchitectCommented:
Log on as another user then navigate to c:\Documents and Settings and delete the profile from there.  If you want to delete the profile from the registry as well (which will remove it from the user profile list) navigate to the following key:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\ProfileList

Go through the list of SIDS until you find the one for the user.  Look for the value in ProfileImagePath.

The next time you log in with the administrator account it will recreate the profile.  

Hope that helps
0
 
PberSolutions ArchitectCommented:
I failed to mention in my previous post to delete the key corresponding to the SID of the profile you wish to delete.  You can also just rename the key as well as the profile name under Documents and Settings just so you have backup.  This way the user will get a new profile and you can go back if needed.
0
Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

 
cmoerbeAuthor Commented:
I tried to delete the user from Documents and Settings already, but it keeps giving the error message " Cannot delete NTUSER.DAT: It is being used by another person or program." However, I know that the user is not logged in or using any portion of that server. I also checked shared folders - sessions - and verified that it wasnt using his profile behind the scenes. Should I go with the registry change first, and then try to delete it?
0
 
PberSolutions ArchitectCommented:
Reboot the box if you can and then delete the profile right away.  Try connecting to the machine remotely (i.e. \\machine\c$) and deleting it that way as well.
0
 
cmoerbeAuthor Commented:
Well its a production server, so I will have to wait until after hours to try that approach.
Also I cannot UNC to the C$. It wont allow access, for security reasons. I think maby starting in safe mode might help, but again that will have to wait until non-business hours.
0
 
PberSolutions ArchitectCommented:
You might be able to do this during production...

If you delete/rename the registry key and then try to login with the administrator account, it will try and create a new profile under documents and settings

The old profile will be:

c:\documents and settings\administrator

The new profile will be

c:\documents and settings\administrator.domain
or
c:\documents and settings\administrator.000

You will see this reflected in the ProfileImagePath in the registry.  If you want to clean this up later after you rebooted and deleted the original profile, you can rename the administrator.000 to administrator and update the ProfileImagePath in the registry to point to the renamed path.
0
 
cmoerbeAuthor Commented:
I found out what the problem was. There was a disconnected remote session sitting in terminal services manager. (I dont know why I didnt think about that earlier )  It kept trying to reconnect to the session. I went into term serv mgr, removed the disconnected session, and then it allowed me to go in and delete both profiles. ( joeadm and joeadm.domain ). I do appreciate your reply though, and will use that as another tool if I were to run into this type of problem again.

Thanks!

C
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 4
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now