Task 5.4: Securing the Default User Accounts
During the installation of a Windows server or client operating system, two user accounts are created by default: the Local Administrator and the Guest account. These accounts live in the local accounts database (LAD) and remain there on XP, Vista, Windows 7, member servers, and stand-alone servers.
As you run DCPromo on a server to create a new domain and become a domain controller, the LAD is replaced with the AD database on that system. All accounts in the LAD are destroyed. Two default domain accounts are created for this new domain and they live in AD. These are the Administrator for the domain, and the Guest account for the domain.
In addition to the AD database, a new LAD is created for Directory ...
Get Security Administrator Street Smarts: A Real World Guide to CompTIA Security+™ Skills, Third Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
