Pau Lo

<div>
<div class="content wysiwyg-content fr-view">
Is it a reasonable assumption to make, that if a user has been granted local admin rights to a windows server in a domain, that technically they could use that access, albeit on a single server in this case, to compromise other servers across the domain? And if so what specific attack paths may they use with their admin rights to a single server?<br>I have noted during an audit of admin rights across systems joined to the domain, that some accounts have admin rights on individual domain joined servers. The servers themselves don’t host any sensitive data, or run live applications or critical processes etc, and as such there is a perception that there is little risk associated with this. I was hoping to tap into your views as whether my theory that this is actually a dangerous starting point if they had malicious plans, or if you feel the risk is actually fairly low? Or any other risk factors to consider, e.g. ransomware propagation?
</div>
</div>



Is it a reasonable assumption to make, that if a user has been granted local admin rights to a windows server in a domain, that technically they could use that access, albeit on a single server in this case, to compromise other servers across the domain? And if so what specific attack paths may they use with their admin rights to a single server?
I have noted during an audit of admin rights across systems joined to the domain, that some accounts have admin rights on individual domain joined servers. The servers themselves don’t host any sensitive data, or run live applications or critical processes etc, and as such there is a perception that there is little risk associated with this. I was hoping to tap into your views as whether my theory that this is actually a dangerous starting point if they had malicious plans, or if you feel the risk is actually fairly low? Or any other risk factors to consider, e.g. ransomware propagation?

local admin rights risk on innocuous server

This topic area includes legacy versions of Windows prior to Windows 2000: Windows 3/3.1, Windows 95 and Windows 98, plus any other Windows-related versions including Windows Mobile.

Windows OS

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.

Active Directory

Operating system security (OS security) is the process of ensuring OS integrity, confidentiality and availability. OS security refers to specified steps or measures used to protect the OS from threats, viruses, worms, malware or remote hacker intrusions. OS security encompasses all preventive-control techniques, which safeguard any computer assets capable of being stolen, edited or deleted if OS security is compromised, including authentication, passwords and threats to systems and programs.

OS Security

Security is the protection of information systems from theft or damage to the hardware, the software, and the information on them, as well as from disruption or misdirection of the services they provide. The main goal of security is protecting assets, and an asset is anything of value and worthy of protection.  Information Security is a discipline of protecting information assets from threats through safeguards to achieve the objectives of confidentiality, integrity, and availability or CIA for short. On the other hand, disclosure, alteration, and disruption (DAD) compromise the security objectives.