Everything you need to know about backup and disaster recovery with AWS, for FREE!
Course Of The Month
8 days, 4 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
Requirement for dual approval when changing system passwords - Server 2008 R2 domain
Posted on 2012-03-28
We have a new requirement in that any changes to System passwords need to be approved by 2 users. Instead of 1 person with the appropriate permissions being able to change system passwords. Eg the administrator acocunt.
We have a server 2008 R2 domain level.
We have a server 2008 R2 domain level.
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
2 Comments
Active today
Never heard of this requirement or ever being able to be considered or done. Put simply, I'm going to say sorry, but this cannot be done without being able to implement some kind of two factor authentication and each person only has access to one "factor".
I'm curious if anyone else has suggestions, but your answer may simply be that this is not possible. You might have to implement an audit system whereby you track who changes the password and then that person must retain records as to who authorized the change.
I'm curious if anyone else has suggestions, but your answer may simply be that this is not possible. You might have to implement an audit system whereby you track who changes the password and then that person must retain records as to who authorized the change.
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Suggested Solutions
| Title | # Comments | Views | Activity |
|---|---|---|---|
| Windows Modify Permissions | 19 | 88 | |
| 2008 R2 export VM includes VHD | 1 | 26 | |
| Deploying MSI package with GPO | 3 | 18 | |
| NTDS CN=Infrastructure FSMORoleOwner | 5 | 6 |
I was asked if I could set up a fax machine so that incoming faxes were delivered to people's Exchange inboxes and so that they could send faxes from their desktops without needing to print the document first. I knew it was possible but I had no id…
Sometimes drives fill up and we don't know why. If you don't understand the best way to use the tools available, you may end up being stumped as to why your drive says it's not full when you have no space left! Here's how you can find out...
- Windows OS
- Windows Server 2008
- Windows 8
- Windows Server 2012
- Windows 10
- Experts Exchange
This tutorial will walk an individual through the steps necessary to configure their installation of BackupExec 2012 to use network shared disk space.
Verify that the path to the shared storage is valid and that data can be written to that location:…
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job.
The first step is to acquire the necessary licen…
Suggested Courses
Course of the Month8 days, 4 hours left to enroll
739 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.