November 5th, 2001, 11:37 PM
here's another one.
While surfing around my network trying to discover what is really going on with it I noticed something strange.
I went into Active Directory Users and Computers and looked under the Domain Controllers OU. I noticed a machine that I am not familiar with listed there. I then attempted to remove delegation from that machine but was told that I didn't have the rights to do that I'm an Enterprise Admin on this network so I thought I could do anything on it... anyway. I then tried to remove it from the Domain Controllers group but was unsuccessful. hmm... Well, I thought to myself, let's just delete the damn thing... nope can't it tells me that "can not delete WPU object" or something to that affect...
So, I run a tracert on the machine name and it goes outside of my network. I actually have it traced down to a machine running somewhere on Road Runner... but I won't go into more detail. I have a phone call in to their security group, but what I want to do is remove the computer from my network. HOW can I do this?
November 6th, 2001, 05:25 AM
Road Runner huh....
November 7th, 2001, 04:31 AM
yup, RR, and I think I know who the person is. It's the former admin of this company if my guess is correct. It's a local RR account, and they just happened to have had one and liked working from home... hmmm...
Anyway, I succeded in removing the machine from the Domain Controllers group, but I still can't change the primary membership of the machine because it IS a DC. I'm not really concerned about it right now, because I have created a nice little Group Policy for it so if it does log on it won't be able to do anything