Solved

Tracing back where the Domain & Enterprise Administrator account is used ?

Posted on 2014-10-21
5
184 Views
Last Modified: 2014-10-30
Hi,

Is there any way to trace back where the Domain & Enterprise Administrator account is used in an AD domain ?

I need to get the list of where it is used before I rename the AD account and change the password in my company.

Any help would be greatly appreciated.

Thanks
0
Comment
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
5 Comments
 
LVL 19

Assisted Solution

by:Miguel Angel Perez Muñoz
Miguel Angel Perez Muñoz earned 167 total points
ID: 40394455
0
 
LVL 9

Accepted Solution

by:
dlb6597 earned 333 total points
ID: 40394477
you can also check the lastlogon attribute for the accounts to see the last time they were used.
you can dump out the services for each server to make sure the accounts aren't being used to run services.
One last resort (if you aren't in a critical environment) is to temporarily disable each account and see who calls.
0
 
LVL 8

Author Comment

by:Senior IT System Engineer
ID: 40394496
Somehow the active directory functionality level is still on Windows Server 2003. So does that feature still available ?

I don't have SCCM in the domain.
0
 
LVL 9

Assisted Solution

by:dlb6597
dlb6597 earned 333 total points
ID: 40394507
not sure which functionality you are specifically referring to, but both auditing and the lastlogon information are available in 2003.
0
 
LVL 8

Author Comment

by:Senior IT System Engineer
ID: 40394515
Ok so what's the powershell script to query that on each AD DC servers ?
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Here's a look at newsworthy articles and community happenings during the last month.
This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
In this Micro Tutorial viewers will learn how they can get their files copied out from their unbootable system without need to use recovery services. As an example non-bootable Windows 2012R2 installation is used which has boot problems.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

630 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question