built-in administrator account password

[Guest EddyVK]

Hi, since we have several administrators (domain admins) on our server, I

want to secure the built-in administrator account so that only that

administrator can change the password for the built-in administrator account

and the domain admins can't...

I already looked in the Local Security Policy, but didn't find anything

useful for this problem... Any ideas anyone?

Thanks in advance,

Eddy VK

[Guest Pegasus \(MVP\)]

Re: built-in administrator account password

 

 

"EddyVK" <EddyVK@discussions.microsoft.com> wrote in message

news:882DADC9-9BFA-42EC-AAE6-FF7542E95F74@microsoft.com...

> Hi, since we have several administrators (domain admins) on our server, I

> want to secure the built-in administrator account so that only that

> administrator can change the password for the built-in administrator

> account

> and the domain admins can't...

> I already looked in the Local Security Policy, but didn't find anything

> useful for this problem... Any ideas anyone?

> Thanks in advance,

> Eddy VK

 

AFAIK, there is an implicit trust relationship between

domain admins and the local Administrator account.

If so then this would mean that you can't prevent domain

admins from changing the local admin password.