http://www.youtube.com/watch?v=Ar-VoO9ogHc

Hello, just try it and see yourself.Best regards Meinolf Weber Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.

Hi Khoj, Thanks for posting here. Yes, it’s possible to change the domain administrator password if you are accessing the physical machine of your domain controller. For the particular attacking method, it replaces the utilman.exe by cmd.exe which enables Administrator access to the system via cmd.exe. To protect this, you may consider deploying the software restriction policy by using the Hash rule. In this way, the fake “Utilman.exe” will not be executed. How To use Software Restriction Policies in Windows Server 2003 - http://support.microsoft.com/kb/324036 However, in general, to protect your domain environment, you should plan good physical machine access policy and protection mechanism. As described in the following TechNet article, if a bad guy has unrestricted physical access to your computer, it's not your computer anymore. 10 Immutable Laws of Security http://www.microsoft.com/technet/archive/community/columns/security/essays/10imlaws.mspx A user could boot the computer from a floppy disk, and reformat your hard drive. But wait, you say, I've configured the BIOS on my computer to prompt for a password when I turn the power on. No problem – if he can open the case and get his hands on the system hardware, he could just replace the BIOS chips. (Actually, there are even easier ways). Meanwhile, he could remove the hard drive from your computer, install it into his computer, and read it. Thanks. Tiger LiPlease remember to click Mark as Answer on the post that helps you, and to click Unmark as Answer if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.

Thanks Tiger and Meinolf for your inputs. I was surpeised when one of our colleagues had a call for his subordinate on the field regarding password unavailablity and he google'd this solution from him. and we ALL were surprised by the result . Thanks again

Thanks khoj, It solved my problem and now i am able to break my active directory 2008 r2 domain controller password.