Active Directory Security Tip #5: The Default Domain Administrator Account
文章讨论了Active Directory域中默认域管理员账户的检查事项,包括最后一次登录时间、密码更改时间、密码管理方式、是否关联Kerberos SPN以及账户启用状态,并提供了一个PowerShell脚本用于获取相关信息。 2025-9-18 00:3:0 Author: adsecurity.org(查看原文) 阅读量:8 收藏
文章讨论了Active Directory域中默认域管理员账户的检查事项,包括最后一次登录时间、密码更改时间、密码管理方式、是否关联Kerberos SPN以及账户启用状态,并提供了一个PowerShell脚本用于获取相关信息。 2025-9-18 00:3:0 Author: adsecurity.org(查看原文) 阅读量:8 收藏
Sep 17 2025
In every Active Directory domain, there’s the default domain Administrator account.
Here are some key items to check:
- Do you know when the last time the Administrator account was used (logged into)?
- The last time its password was changed? Is it current?
- How the password is managed and stored?
- Does it have an associated Kerberos Service Principal Name (SPN)? (it shouldn’t)
- Is it enabled? (it’s probably fine if it is)
PowerShell for current domain using the AD PowerShell cmdlets:
$Domain = $env:userdnsdomain
$DomainDC = (Get-ADDomainController -Discover -DomainName $Domain).Name
Get-ADUser "$((Get-ADDomain).DomainSID)-500" -Properties Name,Enabled,Created,PasswordLastSet,LastLogonDate,ServicePrincipalName,SID -Server $DomainDC(Visited 20 times, 20 visits today)
Sean Metcalf
I improve security for enterprises around the world working for TrustedSec & I am @PyroTek3 on Twitter.
Read the About page (top left) for information about me. :)
https://adsecurity.org/?page_id=8
文章来源: https://adsecurity.org/?p=4586
如有侵权请联系:admin#unsafe.sh
如有侵权请联系:admin#unsafe.sh