Solved

Remove Administrator

Posted on 2006-06-16
8
286 Views
Last Modified: 2010-04-18
I am trying to remove an administrator profile (e.g. joeadm ) off of a Windows 2003 server. I have tried logging in as a domain administrator as well as a local administrator. When I navigate to user profiles, I can see the profile in the list. However when I highlight it to remove it, "delete" will not highlight. I cannot find a trend here, as I am able to highlight other admin names ( e.g. bobadm ) and it highlights the "delete" button. Please tell me how to remove this user profile, as I am getting error logs with his account name in them ( e.g. 1030, 1060, other kerbos/LDAP issues ).

Thanks,

C
0
Comment
Question by:cmoerbe
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 4
8 Comments
 

Author Comment

by:cmoerbe
ID: 16920495
By the way, I was considering creating a new generic account, then using the copy to function, and just copy that profile over the admin profile. This is in an attempt to "dumb down" the admin accounts rights and then giving me the ability to delete it. Its just a shot in the dark, but I didnt want to do it until I was able to bounce some other ideas off of the problem.
0
 
LVL 26

Assisted Solution

by:Pber
Pber earned 250 total points
ID: 16920733
Log on as another user then navigate to c:\Documents and Settings and delete the profile from there.  If you want to delete the profile from the registry as well (which will remove it from the user profile list) navigate to the following key:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\ProfileList

Go through the list of SIDS until you find the one for the user.  Look for the value in ProfileImagePath.

The next time you log in with the administrator account it will recreate the profile.  

Hope that helps
0
 
LVL 26

Expert Comment

by:Pber
ID: 16920784
I failed to mention in my previous post to delete the key corresponding to the SID of the profile you wish to delete.  You can also just rename the key as well as the profile name under Documents and Settings just so you have backup.  This way the user will get a new profile and you can go back if needed.
0
NFR key for Veeam Backup for Microsoft Office 365

Veeam is happy to provide a free NFR license (for 1 year, up to 10 users). This license allows for the non‑production use of Veeam Backup for Microsoft Office 365 in your home lab without any feature limitations.

 

Author Comment

by:cmoerbe
ID: 16920900
I tried to delete the user from Documents and Settings already, but it keeps giving the error message " Cannot delete NTUSER.DAT: It is being used by another person or program." However, I know that the user is not logged in or using any portion of that server. I also checked shared folders - sessions - and verified that it wasnt using his profile behind the scenes. Should I go with the registry change first, and then try to delete it?
0
 
LVL 26

Expert Comment

by:Pber
ID: 16921036
Reboot the box if you can and then delete the profile right away.  Try connecting to the machine remotely (i.e. \\machine\c$) and deleting it that way as well.
0
 

Author Comment

by:cmoerbe
ID: 16921505
Well its a production server, so I will have to wait until after hours to try that approach.
Also I cannot UNC to the C$. It wont allow access, for security reasons. I think maby starting in safe mode might help, but again that will have to wait until non-business hours.
0
 
LVL 26

Accepted Solution

by:
Pber earned 250 total points
ID: 16921583
You might be able to do this during production...

If you delete/rename the registry key and then try to login with the administrator account, it will try and create a new profile under documents and settings

The old profile will be:

c:\documents and settings\administrator

The new profile will be

c:\documents and settings\administrator.domain
or
c:\documents and settings\administrator.000

You will see this reflected in the ProfileImagePath in the registry.  If you want to clean this up later after you rebooted and deleted the original profile, you can rename the administrator.000 to administrator and update the ProfileImagePath in the registry to point to the renamed path.
0
 

Author Comment

by:cmoerbe
ID: 16922552
I found out what the problem was. There was a disconnected remote session sitting in terminal services manager. (I dont know why I didnt think about that earlier )  It kept trying to reconnect to the session. I went into term serv mgr, removed the disconnected session, and then it allowed me to go in and delete both profiles. ( joeadm and joeadm.domain ). I do appreciate your reply though, and will use that as another tool if I were to run into this type of problem again.

Thanks!

C
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

by Batuhan Cetin Within the dynamic life of an IT administrator, we hold many information in our minds like user names, passwords, IDs, phone numbers, incomes, service tags, bills and the order from our wives to buy milk when coming back to home.…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question