none
how to remove orphaned domain trust user account

    Question

  • I see an account under the Users container, named XYZ$, its userAccountControl attrobute is set to 2080 (PASSWD_NOTREQD | INTERDOMAIN_TRUST_ACCOUNT).  I assume this account was used for some sort of a domain trust relationship, however it was created years ago and nobody recalls.  I would like to remove this account.  One odd thing I noticed is the lastLogonTimestamp is unexpected, contains a value from one year ago.  I am not sure how that could be, but either way that is a fairly long time ago (by logon standards for anything that should be actively used).  I would like to remove this account, but keep getting permissions denied no matter what I try.
    Tuesday, January 3, 2017 8:11 PM

Answers

  • > I would like to remove this account, but keep getting permissions denied no matter what I try.
     
    We face this issue from time to time. What we usually do: Create a new trust with the same name "in this domain only", then delete the new trust.
     
    • Marked as answer by wwodzien Monday, January 9, 2017 4:09 PM
    Wednesday, January 4, 2017 11:02 AM

All replies