Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Delete user account that can be logged on to locally giving admin rights

Posted on 2008-10-23
3
Medium Priority
?
198 Views
Last Modified: 2013-12-04
Hi Y'all,
On the network I look after, a lot of PCs have been identified as having a user account that can be logged on to locally giving full admin access to the machine thus bypassing all security measures in place.
I can get rid of this by logging on to the machine as an administrator and deleting the admin rights from the user. This solves the problem but with 600 PCs on the newtork, can anyone point me at a quick solution/script etc that will do the biz?
Ta.
0
Comment
Question by:prytaneion
3 Comments
 
LVL 2

Accepted Solution

by:
armynt4 earned 2000 total points
ID: 22789870
I don't have the script handy... BUT... if you are running a Windows Server 2000 + domain...you could create a logon script that would delete the local account or change rights to the account when the computer or user logs onto the domain.  Just add it to the domain users via a GPO.  Let this run on the network for at least a week.  You can then run MSBA from microsoft.com to get reports on all machines and their respective accounts/rights, local and otherwise.

Probably the easiest way to do it.
0
 
LVL 38

Expert Comment

by:Shift-3
ID: 22789894
0
 

Author Closing Comment

by:prytaneion
ID: 31509380
Hi Armyn,
Thanks for the tip - looks good to me. Have accepted your solution but would appreciate the script if you could spare me the time. I've not dabbled too much with this!
Best regards,
Alan.
0

Featured Post

Cyber Threats to Small Businesses (Part 2)

The evolving cybersecurity landscape presents SMBs with a host of new threats to their clients, their data, and their bottom line. In part 2 of this blog series, learn three quick processes Webroot’s CISO, Gary Hayslip, recommends to help small businesses beat modern threats.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Ransomware continues to be a growing problem for both personal and business users alike and Antivirus companies are still struggling to find a reliable way to protect you from this dangerous threat.
One of the biggest threats facing all high-value targets are APT's.  These threats include sophisticated tactics that "often starts with mapping human organization and collecting intelligence on employees, who are nowadays a weaker link than network…
This video shows how to quickly and easily deploy an email signature for all users in Office 365 and prevent it from being added to replies and forwards. (the resulting signature is applied on the server level in Exchange Online) The email signat…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an anti-spam), the admin…

972 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question