O'Reilly logo

Windows Server® 2008 Administrator’s Companion by Charlie Russel and Sharon Crawford

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Securing the Accounts

Two important steps you can take to improve the overall security of your server are disabling the default Administrator account and enabling strong password policies. Many attacks on servers (and workstations) are simple password dictionary attacks. By disabling the well-known Administrator account, you force those attackers to first find an administrative account to attack; by enforcing strong password policies, you make a pure dictionary attack more difficult.

Disabling the Administrator Account

Disabling the built-in Administrator account (also known as the 500 account because of the last three digits of its GUID) and building a new Administrator account is one method of "security by obfuscation." It is an often recommended ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required