Don't turn off the port and use of the machines to set up an FTP server for this forum to share. :)
-Z.V. -----Original Message----- From: Za Vue [mailto:[EMAIL PROTECTED] Sent: Wednesday, February 27, 2008 12:04 PM To: NT System Admin Issues Subject: RE: Employee Terminations If you are not paying for the port, why turn it off? Leave ports active and machines area as test area. Once the domain accounts are disabled, passwords on routers and switches changed what can they do? If they are that smart then you guys should not be letting them go anyway. Perhaps they may have access to the local admin accounts on the workstations. If you are like me, I don't care and don't know what the password to the local machines is. They are randomly change everything month. -Z.V. -----Original Message----- From: Christopher J. Bosak [mailto:[EMAIL PROTECTED] Sent: Wednesday, February 27, 2008 11:52 AM To: NT System Admin Issues Subject: RE: Employee Terminations "#3: Why? Walk over to the PC and shut it off/re-image/whatever." Obviously, after they leave. It would be a little rude to go in there and just start working on their old computer while they are still packing up their old desk, hence why it's getting disabled remotely. I'd disable the account, and force a shutdown to the computer. If they turn it back on, it's not like they're logging back in to do anything anymore. - Chris -----Original Message----- From: Phil Brutsche [mailto:[EMAIL PROTECTED] Sent: Wednesday, February 27, 2008 10:41 hrs To: NT System Admin Issues Subject: Re: Employee Terminations A lot of that is specific to your organization. #1 should be "disable all of user's accounts" #2 is irrelevant if you do #1. Any disabled account cannot be logged into, regardless of whether the attacker knows the password. Same goes for #4 & #6. If everything uses AD for authentication it can be done in one fell swoop. #3: Why? Walk over to the PC and shut it off/re-image/whatever. Erickson, David wrote: > On our checklist we have: > > 1. disable user's AD acct > 2. reset user's password > 3. disable network port. > a. We now have Cisco IP phones that sit in-line between the > computer and the network jack. If I disable the port, they would not be > able to use their phone. What do you do? Log them off their computers > instead? > 4. Remove VPN access > 5. Transfer phone to Front Desk Recption > 6. Shut down email access -- Phil Brutsche [EMAIL PROTECTED] ~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~ ~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm> ~ ~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~ ~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm> ~ ~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~ ~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm> ~ ~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~ ~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm> ~
