Locke out of Active Directory

Posted on 2009-04-29
Last Modified: 2012-05-06
I am runnning a windows 2003 server as a domain controller and my named domain admin account has become locked out. I am not guru with AD so need some help.

Not sure the name of the default AD domain admin account. I tried logging in with my domain admin account and is locked out which tells me its not the default account. The only access I can get is to the Directory Services Restore mode, and I cant open AD users and computers with that account.

Is there a way to unlock an account so I can access this DC, dont really want to reinstall anything as I have setup numberous policies that will have to be recreated, which leads me to part 2 of the equation.

If I cannot get back into the system, can I backup AD somehow and import that backup into a clean build?

Spent all day on this.
Question by:dwarner8
    LVL 7

    Expert Comment

    The default admin username is administrator (if your windows is in english)
    LVL 1

    Author Comment

    Ah, the renamed account is xadministrator,however, whenever I login, it tells me to change the password but when I do, it says your account is locked out. I tried logging in as administrator and as xadministrator  and nothing works.
    LVL 1

    Accepted Solution

    I solved it myself from another thread.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Do You Know the 4 Main Threat Actor Types?

    Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

    I came across this issue when setting up a two way forest level trust. so here's the scenario: A company wildcards acquired another company, bizworks ( both Fictitious). Wild cards: windows 2003 Domain & forest functional levels - Ad domain na…
    My last post dealt with using group policy preferences to set file associations, a very handy usage for a GPP. Today I am going to share another cool GPP trick, this may be a specific scenario but I run into these situations frequently in my activit…
    This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
    This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

    760 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    7 Experts available now in Live!

    Get 1:1 Help Now