G
Gabe G
There appears to be a way, using the net user <administrator account name> *
command via command prompt, to reset the local administrator password. While
I can block access to My Computer>Manage and Start>Run>cmd, there are still
ways for a user to get to a command prompt....
Also, doesn't it seem like a big security hole that you're allowed to reset
a local admin password without having local admin rights to that box? I
didn't think that was true, but I just logged on to a machine with a regular
domain account (that doesn't have local admin rights to the box) and was able
to reset the local admin password via My Computer>Manager and command prompt.
Anyone have any suggestions to further lock down a box to prevent this from
happening?
command via command prompt, to reset the local administrator password. While
I can block access to My Computer>Manage and Start>Run>cmd, there are still
ways for a user to get to a command prompt....
Also, doesn't it seem like a big security hole that you're allowed to reset
a local admin password without having local admin rights to that box? I
didn't think that was true, but I just logged on to a machine with a regular
domain account (that doesn't have local admin rights to the box) and was able
to reset the local admin password via My Computer>Manager and command prompt.
Anyone have any suggestions to further lock down a box to prevent this from
happening?