Precautions taken to disable domain adminstrator account and creating a new domain administrator account


We use windows 2008 AD.I want to change our domain\administrator password for security reasons.At the moment I am not sure which all services uses the domain\administrator account.

I am planning to create a new domain administrator name as Gadministrator with all domain\administrator privileges, then and disable the old domain\administrator account.

If any services fail I  will create additional administrator privileges account  and authenticate it rather than using the domain\Gadministrator

Please suggest, Is this a good idea or is there a better way of doing this?
Who is Participating?
Tony MassaConnect With a Mentor Commented:
Disabling the account will certainly work, but you should attempt to identify where the account is being used before simply disabling it.

How many servers?  You should be able to use security event logs from your domain controllers to identify where the administrator account is being used.  The logon events will give you the IP address of the server sending authentication (logon) requests.

As for the replacement account(s), I would suggest that you create multiple accounts using least privileged access to give the account(s) as little permissions as possible to carry out the individual tasks.  Don't just replace with a single account as it will become too "powerful".
Mohammed KhawajaConnect With a Mentor Manager - Infrastructure:  Information TechnologyCommented:
I suggest you use something like DameWare to identify services running under the account in have to check other things such as SQL, Exchange, etc to ensure you are going to cause serious issues.
lianne143Author Commented:
We have 18 servers within our LAN. Please post me some tutorials as how to find the services running under domain\administrator using dameware.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.