Pinpoint use of an AD account in Server 2003 domain

[bludbunny]

Hi guys

My manager has asked me to change the password on our domain "admin" account, the issue is that over the years it may have been used by previous techs to run services / tasks on some of our many servers over the domain. I would like to track down where this account is being used, and change the account over to a new specific service account, so we can move forward with changing the password without risk of having our mission critical services failing.
What is the best way to accomplish this? I have had a dig through the security log on our main AD server, but it doesn't give me a great deal of information.

Any help would be appreciated.
cheers,
Brett

 

[adrianvasile]

It is probably hard to figure out what other server is using this ID - normally you should check Task Scheduler to see what jobs are scheduled an that may help you. I am sure that it may be a script that will list all the scheduled jobs on any systems and even all the services / what user are they running under.
in the future yo may create another admin that has a different user name and have all the jobs run under that one - I have a user called QBACKUP that runs all the schedules , etc - password never changes though