I have an old computer here at work. [Local Public School System]. I have reinstalled WinXP and everything works good. Internet is connected and is working. Now I need to connect myself to our domain here at school so I can view the shared drives. How do I do this. It asks for a domain password and of course I do not have it. Also its not likey the domain admin will place me on the domain because he's a dickhead. What do I do.

11/10/2005 2:35:37 PM

you are at the mercy of the dickhead admin

that's all there is

11/10/2005 2:40:41 PM

I finally cracked his local admin password for each computer. There must be a way to retreive the domain password also. I even have some computer connected to the domain is there a way to retrieve a password from them?

11/10/2005 2:43:18 PM

crack the password to the domain controller if he's that dumb.

11/10/2005 3:19:41 PM

i'm no 1337 haXor like some of ya'll guys. ^got any links so I can read up?

11/10/2005 3:34:46 PM

http://www.google.com/search?hl=en&q=crack+domain+controller+password

might be a good place to start reading



so you don't have a username and password for the network? You don't have email there or anything?

11/10/2005 4:59:42 PM

ummm, crack it the same way you cracked the rest of them?

11/10/2005 5:20:03 PM

if there is an actual password on the local computers (not no password) than you can access them all remotely using the login "administrator" and the password.

If the admin was dumb enough to use the same password for the DC, try this.

First you need the ip address or hostname of the(one of the) domain controller(s).

There are a couple ways to go about this. The easiest might be this:
open a command prompt on one of the computers already on the domain. Do an ipconfig /all. It will list the primary Dns Suffix.

ping the dns suffix. For example if the suffix is whatever.domain.com.

ping whatever.domain.com

it should resolve the ip address of the closest DC.

So now that you know where it is, try to login to it. Try either terminal services (remote desktop) or you could try launching the Active Directory users and computers snappin and connecting to the DC.

This is included in the win2k3 resource tool kit that you can get from Microsoft's website

if you can login with terminal services, go start -> run -> dsa.msc [enter]

This launches the active directory users and computers snappin.

Or if you cant login via terminal services, download the resource kit and launch dsa.msc. After its open right click "active directory users and computers" and click connect domain controller and enter the IP.


Once you're connected (dsa.msc on the terminal services or dsa.msc locally) you just need to create yourself an administrative logon.

Then you can do whatever the hell you want



As a note, im not sure if the local admin account on the DC will let you do dsa.msc remotely. its worth trying tho.

11/10/2005 5:48:29 PM

when we get back to work. [monday] I'll see what I can do and give ya'll a holla.

11/10/2005 9:28:37 PM

you know

i'm the admin at work

and even if i was monumentally stupid enough to make it easy for you to crack passwords, i damned sure would have you fired if i found out.

why aren't you given access to what you need? if you need it for work, your boss will tell the admin to give you access. if you don't need it, you are trying to get yourself fired.

11/10/2005 10:23:30 PM

^
Nailed it on the head. Don't put your job on the line because somebody else can't do theirs correctly. There are SEVERAL tools I would like to use at my work, and would save a whole lot of time, but am not allowed to. Anyways, if you can't get your work done because you aren't on the domain, somebody (administration maybe?) will make sure proper actions are taken to resolve the issue.



[Edited on November 10, 2005 at 10:49 PM. Reason : .]

11/10/2005 10:47:43 PM

I would agree with ^/^^ if it wasn't the fact that it was a school system. Public school IT departments are generally overworked, underpaid, underqualified, apathetic to the needs of those they serve, and unable to enforce any of their doctrines upon the knowledgable.

Begin anecdote. My high school CSC class was using the only lab they'd allow the teacher the freedom to configure for proper CSC instruction-- a lab of 486's on 16Mb token ring. At one point, I was helping him configure some of the old lab computers they were throwing out (66MHz, yes they were throwing away computers faster than the lab he was using to teach the CSC curriculum) to provide a similar teaching environment, but slightly faster, because he wasn't sure they'd be able to get any funding for a new lab when the AP committee went to Java, without being required by IT to run an environment that was too restrictive to teach CSC in. He eventually did get the funding for a new lab, when he managed to drive the point home that Java could not be reasonably taught on a 486... but he's still having issues with IT wanting to mis-configure his lab (that was only funded for his CSC curriculum).

Basically, public school IT is a circus of drop-out MSCE clowns and if they aren't offering you the services you need, and you can take them without interfering with anyone else, go for it.

[Edited on November 11, 2005 at 2:52 AM. Reason : *]

11/11/2005 2:50:21 AM

Incognegro, I have to argree with you. Our school system has 22 schools and including several 2 and 3 A high schools. Not large like Wake/Durham/Guilford but decent sized. The computers I'm working w/ are school owned but they are obsolete according to the school. 733Mhz and 256 Ram GX110 Dells. Decent machines for internet and office software. All I wanna do is see our shared drive on the computer. Another I may set up soley to ran an LCD projector, alos need to see the shared drives. Since the units are "obsolete" the techs are not gonna waste their time setting them up. As I agree they are overworked currently. The director of technology has a docorate is special education or some crap like that, and only "plays" w/ computers as a hobby. The director doesn't really know anything about anything yet he personally makes all the decisions. As Incognegro said sometimes you just have to take matters in your own hands. Remember I'm not going into the network or computer w/ malicous intent. I just wanna have some equipment for the students. Isn't it about the students anyway!?!

Quote :

"if you need it for work, your boss will tell the admin to give you access."

My direct boss [principal] does not/can not tell the tech director [admin] what to do. Actually the admin tells the principal what to do. Weird ain't it.

The reason I cracked the local password was just to do a little maintence IE defrag, remove spyware, and install a few freeware programs. something the techs just don't wanna/have time to do.




[Edited on November 11, 2005 at 9:49 AM. Reason : .]

11/11/2005 9:39:21 AM

1. find the domain controller
2. ntpasswd
3. ...
4. profit

11/11/2005 1:51:48 PM

just so you know, technically you are committing a felony.

And Incognegro: yall were runnin on 486's? Jesus man, our CSC lab was loaded out with 20 IBM 333mhz machines, 128mb of ram, 8gig hard drives. Computer Graphics was a different story. When I took that, the teacher recommended everyone to go out and get a 256mb dimm, and we all had a day where we opened up the computers and installed our own memory so they would be usable for photoshop / coreldraw etc. That was awesome.

11/11/2005 2:49:39 PM

I agree. Whenever you haxor a pswd its wrong. But sometimes doing something wrong in the name of greater good is ok.

11/11/2005 3:03:43 PM

only sometimes.

11/11/2005 3:10:43 PM

true.

11/11/2005 3:20:19 PM

does anyone know if the password I'm looking for would be stored in the SAM file?

11/11/2005 3:21:17 PM

install a keylogger

11/11/2005 3:47:10 PM

I was thinking about that also. Do you have a link?

[Edited on November 11, 2005 at 3:54 PM. Reason : ?]

11/11/2005 3:53:33 PM

Just so you know... most admins will not take kindly to someone circumventing their setup. Especially if others find out. Makes them look bad in their peers' eyes.

If caught, don't be surprised if you are arrested and faced with felony charges (which will likely stick).

The law is on their side.

Oh, and malicious intent... not necessary. The laws have been rewritten so that even just gaining access is all that's necessary to prosecute.

Keylogger: Even worse of an idea.



However, it does sound like a shitty situation. I'd keep working the guy to try and get yourself added. Having the local admin password could be pushing things, but should probably go unnoticed.

[Edited on November 11, 2005 at 4:52 PM. Reason : asdf]

11/11/2005 4:49:00 PM

^I see your point and will consider it.

As a side note. These computer were connected to the domain at one point. Since they are considered obsolete they usually recycle them. I saved them from the recycler because I have some modular labs that use these machines. Now that I'm not using those modular labs I can use these computers for other reasons [see above]. These are school owned machines that have been reformatted w/ school owned software and are going on a school owned network.

As a side note part deux: There are a few select folks around the school system that have the passwords. Since i'm not in this cliche I don't get a password. Its politics and I haven't played my hand. I want to be the unnoticed guy who has his lab working flawlessly. All the other teachers have a horrible time fighting malware, adware, spyware, and viruses. I have no such problems. Their computers run like shit. I keep my lab maintained. Sometimes and I mean sometimes the greater good just has to win.



That whenever any form of government becomes destructive of these ends, it is the right of the people to alter or abolish it, and to institute new government, laying its foundation on such principles and organizing its powers in such form, as to them shall seem most likely to effect their safety and happiness.

[Edited on November 11, 2005 at 11:25 PM. Reason : /]

11/11/2005 11:21:56 PM

Noen- Yep. We got to work on a bit of computing history, actually. They were all PS/2 systems of PS/2 port lore.

When we got the new lab I got to tear into the server... with an MCA SCSI controller and a full height 2gb SCSI drive. Almost surreal that we were still using shit that old. Got a vintage Model M keyboard out of the deal, too.

[Edited on November 11, 2005 at 11:47 PM. Reason : *]

11/11/2005 11:39:03 PM