GPO locked out administrators

  • Thread starter Thread starter Vlaad
  • Start date Start date
V

Vlaad

Hi,
I am a consultant for several companies. Each one has
their own 'IT person'
Yesterday, one of these geniuses added a GPO for security
and he ended up adding a GPO that shut out everyone from
the domain administrators accounts. He did this at the
domain level.
Is there any way to recover from this?
As I stated, this was done at the highest end of AD.

Thanks for ANY input,
Vlaad
 
Can you elaborate a bit on what is locked out? Can you access the domain
controllers over the network via administrative shares or such? Without
knowing more it might be helpful to install adminpak on a domain computer
and trying to access security policy for the domain that way or see the link
below on a registry mod to allow access to mmc snapins if that is a
roblem. --- Steve

http://support.microsoft.com/default.aspx?scid=kb;it;263166
 
Back
Top