Admin Account Management
Purpose
This document outlines multiple solutions that can be used to manage local and domain admins.
Associated Content
Windows Local Admin Process
| Content | Type | Function |
|---|---|---|
| Windows Local Admin Process | Solution | This solution aims to establish a centralized local admin user for each client or computer |
| Windows Local Admin Account Process | Internal Monitor | Detects the machine with missing or outdated credentials. |
| Windows - Admin Account - Create/Update | Script | Create/Update the user. |
| △ CUSTOM - Execute Script - Windows - Admin Account - Create/Update | Alert Template | Execute the script against the machines detected by the internal monitor. |
| Windows - Admin Account Password Rotation Notification | Client Script | This script sets the Ticket Creation or email sent for the password update made by the script 'Windows - Admin Account - Create/Update' |
Windows Domain Admin Process
| Content | Type | Function |
|---|---|---|
| Windows Domain Admin Process | Solution | This solution aims to establish a centralized domain admin for each domain. |
| Windows Domain Admin Account Process | Internal Monitor | Detects the domain controller with missing or outdated credentials. |
| Windows - Admin Account - Create/Update | Script | Create/Update the user. |
| △ CUSTOM - Execute Script - Windows - Admin Account - Create/Update | Alert Template | Execute the script against the machines detected by the internal monitor. |
Local Admin Group Cleanup
| Content | Type | Function |
|---|---|---|
| Local Admin Group Cleanup | Solution | The purpose of the solution is to manage the members in the local admin group for the Windows machines. |
| Local Admin Group Cleanup - Add/Remove | Script | Manage the addition and removal of members from the local admin group. |
| Local Admin Group Cleanup | Internal Monitor | Detects Windows computers where the local admin group cleanup process is enabled, but the script has not been executed in the past 7 days. |
| △ Custom - Local Admin Group Cleanup | Alert Template | Run the script against the computers detected by the internal monitor. |
New Local Admin Monitor
| Content | Type | Function |
|---|---|---|
| New Local Admin Monitor - Create | Script | The script generates remote monitors that trigger an alert when a user or group of users are promoted as local administrators on the endpoint machine. |
New Domain Admin Monitor
| Content | Type | Function |
|---|---|---|
| New Domain Admin Monitor - Create | Script | The script generates remote monitors that trigger an alert when a user or group of users are promoted as domain administrators on a Windows domain controller. |
Implementation
- Please carefully review the solution documents for importation before implementation.