holcomb_frank
asked on
Tips for setting up Server 2012 user accounts
We are setting up our first 2012 server - in the past when setting up servers , we would make a copy of the administrators account so that if something happened to that profile we would have an alternate to log in with. We are setting up a dedicated server, that will set outside of our domain, and will be primarily used by an employee from another or our locations. So this user will need admin rights to use and perform regular maintenance and other program features. We would also like to be able to log in with admin rights so that we can monitor this user and server. Looking for the best suggestions for having this extra admin account for those just in case times? Our back door ?
John
Server 2012 is like earlier servers in this respect. You can set up a new account and make it a member of domain administrators. The password should be very secure.
ASKER
John,
I have my domain at my office location. We've been asked by another group to host a server at our location for them. It will sit in our building and use our network/gateway for internet access only. It will not be a member of the domain. What I need to do is set up the server so that a person from this remote location, can connect to the server over our vpn connection and have access and administer this server. But I don't want them to be able to access our domain at all while on this server. Obviously that is not a problem. They don't have a username or password to access the domain. But because this server sits at our location, we would like to be able to login to it if there are issues or to check on backups or whatever. So if we created an additional administrative account on this pc for us....... what steps could be taken to keep the Remote Adminsistrator from changing our password on this specific server and locking us out. Or is this entirely a trust issue between individuals.? Just looking for suggestions for this type of scenario. I hope this explanation helps in understanding our question. And we are using strong passwords, thanks for that reminder as well.
I have my domain at my office location. We've been asked by another group to host a server at our location for them. It will sit in our building and use our network/gateway for internet access only. It will not be a member of the domain. What I need to do is set up the server so that a person from this remote location, can connect to the server over our vpn connection and have access and administer this server. But I don't want them to be able to access our domain at all while on this server. Obviously that is not a problem. They don't have a username or password to access the domain. But because this server sits at our location, we would like to be able to login to it if there are issues or to check on backups or whatever. So if we created an additional administrative account on this pc for us....... what steps could be taken to keep the Remote Adminsistrator from changing our password on this specific server and locking us out. Or is this entirely a trust issue between individuals.? Just looking for suggestions for this type of scenario. I hope this explanation helps in understanding our question. And we are using strong passwords, thanks for that reminder as well.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks John.... that's what I thought....just want to throw that out there to make sure I'm not missing anything. Thanks for your time and input.
@holcomb_frank - You are very welcome and I was happy to help.