Solved

krbtgt account still needed?

Posted on 2011-03-09
3
650 Views
Last Modified: 2012-06-21
I have a W2K3 functional level domain. In doing some housecleaning of legacy/unneeded accts in AD, I noticed the krbtgt acct. In brief research, I found that it is what I suspected...an acct used by Kerberos. But, from what I've read, it was used in W2K domains. My question - is it still used in W2K3 domains? I assume yes, but wanted to verify. Any documentation/link for verification would be great.

Thanks.
0
Comment
Question by:coolsport00
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 15

Accepted Solution

by:
JBond2010 earned 250 total points
ID: 35083869
Yes, it is. Kerberos is the authentication protocol used on Windows for authenticating clients on a domain.
0
 
LVL 74

Assisted Solution

by:Glen Knight
Glen Knight earned 250 total points
ID: 35083914
It is very much still required, don't make any changes to this account
0
 
LVL 40

Author Comment

by:coolsport00
ID: 35083931
I thought so...it was almost embarrassing to ask the question :P  I just wish I could've found some resource saying it was still used, because what I found only referenced this acct when implementing a W2K domain. Thanks guys...

Regards,
~coolsport00
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A project that enables an administrator to perform actions within a user session context not just at the time of login but any time later on day(s) or week(s) later.
Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed. Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
This video shows how to use Hyena, from SystemTools Software, to update 100 user accounts from an external text file. View in 1080p for best video quality.

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question