We help IT Professionals succeed at work.

How Does One Discover Where An Old Network Admin Is Using His Password?

180 Views
Last Modified: 2013-12-04
Hello,

I have just taken over someone else's network and while I have many years experience I have always been the one to build out networks. I would like to know if there is any way to trace if and where the old Admin's password is being used, unfortunately I cannot afford to disable the account to see what stops working as it is a high use, high volume network.

Thank you very much,
Comment
Watch Question

Auditing is almost certainly your best (and possibly only) bet.

To confirm though, your terminology is confusing me -- when you say "where the old Admin's password is being used", do you mean where the previous admin. is still logging on or, perhaps, automated logons that have those credentials cached?
You would need to scour the security event logs on any domain controllers to find what machines this logon is originating from.
Unlock this solution and get a sample of our free trial.
(No credit card required)
UNLOCK SOLUTION

Commented:
Or are you simply looking for his password?  If the account is already logged on, it's as simple as going into the control panel and changing it to whatever you desire.  Not exactly sure what your asking.
Unlock this solution and get a sample of our free trial.
(No credit card required)
UNLOCK SOLUTION
jimmlegsGuru - Elite

Author

Commented:
Thanks a lot for the script! Sorry it took so long, I just started this gig.

Jimmlegs
Unlock the solution to this question.
Thanks for using Experts Exchange.

Please provide your email to receive a sample view!

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.