Surrender Administrator Account

TheMSsForum.com: The Microsoft Software Forum

Hi guys, I need some opinion on this:
Recently we are doing some security audits and my boss
wants us to surrender our Domain Administrator Account and
password to a locked safe.

Other than the System Administration, joining of PC /
server to domain, etc, how can I convince my boss that it
is better for us System Adminstrator to keep the account
and password to ourselves?

Regards.
Top

Re: Surrender Administrator Account by Shenan

Shenan
Mon Jan 12 00:20:06 CST 2004

Philip wrote:
> Hi guys, I need some opinion on this:
> Recently we are doing some security audits and my boss
> wants us to surrender our Domain Administrator Account and
> password to a locked safe.
>
> Other than the System Administration, joining of PC /
> server to domain, etc, how can I convince my boss that it
> is better for us System Adminstrator to keep the account
> and password to ourselves?

You won't be able to - because it is not logical.

If you guys all died in some freak accident at some meeting/lunch or
something else happened like that - the people they called in to replace you
would NEED that information or would just crack it.

It is logical to have the admin username/password in a locked/fire-proof
safe somewhere, perhaps on a CD/DVD with software to help diagnose problems
or restore your system(s) in a devastating event.

It should be part of your disaster recovery plan.

If it makes you feel better, put it in a password protected document, zipped
in a password protected ZIP file and burned on a CD/DVD. Give that password
to your BOSS and tell him what that is and why that is not the domain admin
password.

--
<- Shenan ->
--


Top

Re: Surrender Administrator Account by Karl

Karl
Mon Jan 12 09:17:21 CST 2004

Did you come back to the newsgroup to read the other answers you already
received to your previous post? Or are you waiting for people to email you
directly?


"Philip" <genesis_beta@yahoo.com> wrote in message
news:2edd01c3d8ba$2c2450c0$3101280a@phx.gbl...
> Hi guys, I need some opinion on this:
> Recently we are doing some security audits and my boss
> wants us to surrender our Domain Administrator Account and
> password to a locked safe.
>
> Other than the System Administration, joining of PC /
> server to domain, etc, how can I convince my boss that it
> is better for us System Adminstrator to keep the account
> and password to ourselves?
>
> Regards.


Top

Re: Surrender Administrator Account by jcochran

jcochran
Mon Jan 12 15:02:23 CST 2004

On Sun, 11 Jan 2004 19:14:21 -0800, "Philip" <genesis_beta@yahoo.com>
wrote:

>Hi guys, I need some opinion on this:
>Recently we are doing some security audits and my boss
>wants us to surrender our Domain Administrator Account and
>password to a locked safe.
>
>Other than the System Administration, joining of PC /
>server to domain, etc, how can I convince my boss that it
>is better for us System Adminstrator to keep the account
>and password to ourselves?

Why post this twice...?

Jeff
Top