How to Reset Local Administrator Password on Server



  • Hi team

    Big issue happened today ..
    1 of my server r messed me up ..
    domain administrator unable do anything ..
    i need to reset local administrator password

    anyone ever got this experience before ??
    i dont know why ..

    any suggestion how to do ..
    really need ur help guys ..

    Thanks
    Shybs



  • Can you restore a backup?

    Is it a VM or baremetal install?

    There is various software that can crack/reset the password but I don't remember what it's called.



  • @nadnerB said:

    Can you restore a backup?

    Is it a VM or baremetal install?

    There is various software that can crack/reset the password but I don't remember what it's called.

    its physic server ..
    im done using this http://lordoftheping.blogspot.co.id/2009/05/i-did-not-use-my-tests-virtual-machines.html

    nice post , works for me


  • Service Provider

    I have reset the local admin before, but I believe that it does not work on a domain controller.



  • I believe there is a way to do this on a domain controller. I had a friend that passed away and helped his wife gain access to his home network. Unfortunately, I don't remember the exact process since this occurred a number of years ago.


  • Service Provider

    @shybrsky said:

    @nadnerB said:

    Can you restore a backup?

    Is it a VM or baremetal install?

    There is various software that can crack/reset the password but I don't remember what it's called.

    its physic server ..
    im done using this http://lordoftheping.blogspot.co.id/2009/05/i-did-not-use-my-tests-virtual-machines.html

    nice post , works for me

    Ah, so it is working now?



  • @scottalanmiller said:

    @shybrsky said:

    @nadnerB said:

    Can you restore a backup?

    Is it a VM or baremetal install?

    There is various software that can crack/reset the password but I don't remember what it's called.

    its physic server ..
    im done using this http://lordoftheping.blogspot.co.id/2009/05/i-did-not-use-my-tests-virtual-machines.html

    nice post , works for me

    Ah, so it is working now?
    there are 2 issues today..

    1. sysadmin were forgot the password for local administrator password
    2. administrator domain unable reset password of local administrator, administrator mean nothing in this server, this server joined domain already

    #issue 1 done. i need full access to this server, also i able to assign another user as administrator in this server so some admin able to check and gain authority to fully access their server

    #issue 2, still lookin for solution. or do i need to unjoin then rejoined the server to domain??

    any suggestion?



  • @Danp said:

    I believe there is a way to do this on a domain controller. I had a friend that passed away and helped his wife gain access to his home network. Unfortunately, I don't remember the exact process since this occurred a number of years ago.

    would u asked ur fren... how to solve that?



  • @scottalanmiller said:

    I have reset the local admin before, but I believe that it does not work on a domain controller.

    ofc, it only use for rescuing the server. if domain admin dont have full access to this server, also when trust between this server and domain are disconnected..



  • As far as I know:

    • Local admin is disabled on DC.
    • Domain admin and people in Administrators group are the only ones that can log into DC's

    No local admin until you demote server from DC role



  • @nadnerB said:

    As far as I know:

    • Local admin is disabled on DC.
    • Domain admin and people in Administrators group are the only ones that can log into DC's

    No local admin until you demote server from DC role

    #local admin on dc = did u mean administrator domain?
    #DC ( domain controller server) or another server that joined to the domain
    #demote = did u mean unjoin server then rejoin?



  • When talking about Domain Controllers - it's probably easiest to just think that there is no Local Admin account. It just doesn't exist (can't be used). The only admin (administrator) account on Domain Controllers IS the domain administrator account. Of course the default username of the domain administrator account is administrator.



  • @shybrsky
    Can you paste snapshots of the errors or problems? If you need to past 10 snapshots then do so. What exactly is the "Big issue"?



  • I've reset a lost domain administrator account before. Here is what I did.

    1. Used Offline Password and Registry boot utility, reset the administrator password (This is the Directory Services Restore Mode password)
    2. Once booted in directory services restore mode I created a script that launched at startup that ran as the system account the script ran the "net user" command to reset the domain administrator password.
    3. Rebooted the server into normal mode, the script ran when the computer started up and I was able to use the password I set in the script. Then I made sure to remove the script from startup.


  • @shybrsky said:

    #local admin on dc = did u mean administrator domain?
    #DC ( domain controller server) or another server that joined to the domain
    #demote = did u mean unjoin server then rejoin?

    No traditional local admin account on a Domain Controller (DC)

    • so there is no server\administrator account

    You cannot take a DC off the domain without FIRST demoting it.
    This is a LAST RESORT.

    @brianlittlejohn seems to be onto something. Try that next.





  • @LAH3385 said:

    @shybrsky
    Can you paste snapshots of the errors or problems? If you need to past 10 snapshots then do so. What exactly is the "Big issue"?

    big issue is... my administrator user on dc not normal like before... i need to get its function as before..



  • @brianlittlejohn said:

    Also came across this... cant vouch if it works or not...

    http://www.bursky.net/index.php/2012/04/reset-domain-administrator-password-windows-server-2008/

    I have used this method in the past - it does work, or at least did for me on 2008 (R2)



  • @brianlittlejohn
    I have done this on workstation multiple time and yes it works.
    I cannot say the same thing for DC as I have not try it yet.



  • @brianlittlejohn said:

    I've reselocalost domain administrator account before. Here is what I did.

    1. Used Offline Password and Registry boot utility, reset the administrator password (This is the Directory Services Restore Mode password)
    2. Once booted in directory services restore mode I created a script that launched at startup that ran as the system account the script ran the "net user" command to reset the domain administrator password.
    3. Rebooted the server into normal mode, the script ran when the computer started up and I was able to use the password I set in the script. Then I made sure to remove the script from startup.

    #password of administrator domain is normal like other day
    #its not administrator domain but local server administrator password

    before, i dont need to login as administrator local to gain any access of all my server, but now it different.. force me to set manually administrator domain to be member of rdp user on each server i want to remote.. without administrator local, server said "not authorize"

    look like something missing.. some puzzel or goes away..



  • @Dashrender said:

    @brianlittlejohn said:

    Also came across this... cant vouch if it works or not...

    http://www.bursky.net/index.php/2012/04/reset-domain-administrator-password-windows-server-2008/

    I have used this method in the past - it does work, or at least did for me on 2008 (R2)

    ill try tomorrow...



  • @LAH3385 said:

    @brianlittlejohn
    I have done this on workstation multiple time and yes it works.
    I cannot say the same thing for DC as I have not try it yet.

    noted, ill try soon



  • @shybrsky
    can you paste some screenshots of the error or steps you taken when you try to remote in? The more the better. (please don't post anything security sensitive opened in the background).



  • Are you sure your profile for the domain admin user is just not corrupted?
    Is this the only DC for this domain?
    If so, this is a prime example of why you need more than 1.
    If not, does this occur on other servers/systems when trying to login with the same account?



  • @LAH3385 said:

    @shybrsky
    can you paste some screenshots of the error or steps you taken when you try to remote in? The more the better. (please don't post anything security sensitive opened in the background).

    0_1452040970282_RDP.png

    #(please don't post anything security sensitive opened in the background). what do u mean ??



  • @wrx7m said:

    Are you sure your profile for the domain admin user is just not corrupted?
    Is this the only DC for this domain?
    If so, this is a prime example of why you need more than 1.
    If not, does this occur on other servers/systems when trying to login with the same account?

    #how to check it user corrupted ??
    #i think DC are seem bit strange ... administrator domain user mean nothing on client PC or other servers. force me to set on user account to assign administrator domain get local authority on each server



  • @shybrsky Looks like it is domain-wide (not just that server). Have you tried logging in directly (in front of the server) or with iDRAC/iLO?



  • @wrx7m said:

    @shybrsky Looks like it is domain-wide (not just that server). Have you tried logging in directly (in front of the server) or with iDRAC/iLO?

    yep i did .. with another user local or another domain user ( RDC group), but has no authority to access some setting

    not yet with ILO



  • @shybrsky said:

    @LAH3385 said:

    @shybrsky
    can you paste some screenshots of the error or steps you taken when you try to remote in? The more the better. (please don't post anything security sensitive opened in the background).

    0_1452040970282_RDP.png

    #(please don't post anything security sensitive opened in the background). what do u mean ??

    This is what I replicated. Are you sure that your user is allowed to be remote in on the machine?
    You mentioned that something happened is it possible that whatever happens knock the user rights out.
    0_1452090952844_upload-b9797d2c-7232-4f94-b68d-3b1983beddfa

    Can you post (if possible) the remote user rights?
    0_1452091191820_upload-18c0d3d7-ecd4-4494-be9b-a62b4f4c94f3



  • @LAH3385 said:

    @shybrsky said:

    @LAH3385 said:

    @shybrsky
    can you paste some screenshots of the error or steps you taken when you try to remote in? The more the better. (please don't post anything security sensitive opened in the background).

    0_1452040970282_RDP.png

    #(please don't post anything security sensitive opened in the background). what do u mean ??

    This is what I replicated. Are you sure that your user is allowed to be remote in on the machine?
    You mentioned that something happened is it possible that whatever happens knock the user rights out.
    0_1452090952844_upload-b9797d2c-7232-4f94-b68d-3b1983beddfa

    Can you post (if possible) the remote user rights?
    0_1452091191820_upload-18c0d3d7-ecd4-4494-be9b-a62b4f4c94f3

    sorry for late respond,,,
    just added some user to gain access to remote desktop ..

    before i add, there only administrator local
    maybe ,that the problem

    i dont figured out yet, how administrator domain knocked out


Log in to reply
 

Looks like your connection to MangoLassi was lost, please wait while we try to reconnect.