Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

many domain users as service accounts - not documented

Posted on 2016-10-11
2
Medium Priority
?
112 Views
Last Modified: 2016-10-11
Hi experts,

at a costumer i have a little AD mess.
Many domain admin accounts are used as service accounts on productive systems - that was never documented.

So, as i want to reduce the amount of domain admins i need to get a report where domain accounts are used as service accounts.

My idea was to use msinfo32.exe, build a little script which i can distribute via. SCCM, baramundi or something else to get that informations.
Has somebody done this bevor  to get dedicated information from msinfo32?

Or are there other ways to get the service accounts?


Best Regards
Thomas
0
Comment
Question by:Thomas_1991
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 56

Accepted Solution

by:
McKnife earned 2000 total points
ID: 41838212
Domain admin accounts!? That is an incredibly silly idea.
Please change that as soon as possible.
I can offer a link to a freeware that lists scheduled tasks and services domain wide together with the accounts that are used for those: http://www.cjwdev.com/Software/ServiceCredMan/Info.html
0
 

Author Closing Comment

by:Thomas_1991
ID: 41838241
Yes, i think you will find every error you can do in that infrastructure...

Thank you very much for that tool.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A hard and fast method for reducing Active Directory Administrators members.
Uncontrolled local administrators groups within any organization pose a huge security risk. Because these groups are locally managed it becomes difficult to audit and maintain them.
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…

670 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question