Tracing back where the Domain & Enterprise Administrator account is used ?

Posted on 2014-10-21
Last Modified: 2014-10-30

Is there any way to trace back where the Domain & Enterprise Administrator account is used in an AD domain ?

I need to get the list of where it is used before I rename the AD account and change the password in my company.

Any help would be greatly appreciated.

Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
LVL 19

Assisted Solution

by:Miguel Angel Perez Muñoz
Miguel Angel Perez Muñoz earned 167 total points
ID: 40394455

Accepted Solution

dlb6597 earned 333 total points
ID: 40394477
you can also check the lastlogon attribute for the accounts to see the last time they were used.
you can dump out the services for each server to make sure the accounts aren't being used to run services.
One last resort (if you aren't in a critical environment) is to temporarily disable each account and see who calls.

Author Comment

by:Senior IT System Engineer
ID: 40394496
Somehow the active directory functionality level is still on Windows Server 2003. So does that feature still available ?

I don't have SCCM in the domain.

Assisted Solution

dlb6597 earned 333 total points
ID: 40394507
not sure which functionality you are specifically referring to, but both auditing and the lastlogon information are available in 2003.

Author Comment

by:Senior IT System Engineer
ID: 40394515
Ok so what's the powershell script to query that on each AD DC servers ?

Featured Post

Office 365 Training for IT Pros

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Temporary Write Permission for a Drive 15 55
Commvault IntelliSnap vs SAN Transport 18 55
Active Directory Powershell Script 9 41
AD Computer Objects in VB .Net 2 19
Did you know that more than 4 billion data records have been recorded as lost or stolen since 2013? It was a staggering number brought to our attention during last week’s ManageEngine webinar, where attendees received a comprehensive look at the ma…
Had a business requirement to store the mobile number in an environmental variable. This is just a quick article on how this was done.
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question