Solved

How to reset Administrator account in AD on Windows 2008 Server

Posted on 2009-05-03
4
898 Views
Last Modified: 2012-05-06
Hi,
I faced a big problem within one of my clients.
They have Windows 2008 Server as Domain server installed inside VMware ESX, and some hackers attacked it. They managed to break into 2nd server, which was not part of AD and installed lots of garbage on it, but this was solved.

The main problem is that hackers did "something" to ALL Admin accounts on main DC (Windows 2008 Server) - I cannot login onto it with ANY of admin accounts, neither with local Administrator.
Maybe they were trying so many times, that accounts got locked out, and since none of services run as Administrator, this DC is practically functioning 100%, except I cannot login as Admin.

Now, the problem is that I need to restore Admin account, reset its password, or unlock it, but have no idea, how to do it, since all googled methods were not sucessfull:
First I tried with Directory Services Restore Mode, pressed F8 upon system start, but only "Safe Mode" and "Normal Start" is available in this menu. Am I doing something wrong, or is this option removed from Server 2008?

Ideas welcome.  
0
Comment
Question by:Andrej Pirman
  • 2
4 Comments
 
LVL 9

Expert Comment

by:tillgeffken
ID: 24289601
Maybe one of these methods work for you. I successfully used TRK once (Although it was a Windows Server 2003 machine)
0
 
LVL 9

Accepted Solution

by:
tillgeffken earned 250 total points
ID: 24289604
0
 
LVL 23

Assisted Solution

by:Eirman
Eirman earned 250 total points
ID: 24289773
0
 
LVL 18

Author Comment

by:Andrej Pirman
ID: 24289796
Hi both,

thanx for help, but I already found out sollution myself:
After 1st try with F8 at startup, I had to reboot once again with CTRL-ALT-INS (it's inside Vmware ESX, so this is used instead od CTRL-ALT-DEL) and then go once again with F8. Only this 2nd try is sucessfull - don't know why, but 1st boot with F8 shows:
Safe Mode
SafeMode with Networking
Safe Mode with Command Prompt
Start Windows Normally

and 2nd reboot with F8 shows all other options, where Directory Services Restore Mode is one of them.

After that I sucessfully managed to reset DOMAIN Administrator password, using SRVANY utility.
0

Featured Post

Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
WriteBack Attribute permission on domain level 13 65
AD user profile  integration 5 19
Duplicate SPN records 4 18
Server timing 4 18
In this article, we will see the basic design consideration while designing a Multi-tenant web application in a simple manner. Though, many frameworks are available in the market to develop a multi - tenant application, but do they provide data, cod…
This script can help you clean up your user profile database by comparing profiles to Active Directory users in a particular OU, and removing the profiles that don't match.
This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database. Log onto the server running the Backup Exec database. In a larger environment, this would generally be …
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…

776 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question