High permission global groups

If there is no documentation, where would you start in risk assessing the more priveledged domain groups in an AD? I.e. those who have vast powers to access many resources. I know their are the obvious ones such as domain admins/enterprise admins etc, but I wasnt sure where an admin would start to identify non default created accounts.
LVL 3
pma111Asked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
KCTSConnect With a Mentor Commented:
Groups that you create will only have the permissions that you give them, the list of defauklt groups can be found at http://technet.microsoft.com/en-us/library/cc756898(v=ws.10).aspx
0
All Courses

From novice to tech pro — start learning today.