RE: how to Dump users with Dial in rights?

["Sacha Faust" <sacha () severus org>]

I think this can be easely done using WQL  by just entering the dial in
right option in the query
instead of just listing all the users. I think this should work on nt4 sp6
but not 100% sure.


var machine = ".";
var locator = new ActiveXObject("WbemScripting.SWbemLocator");
var service = locator.ConnectServer(machine);
var wqlquery = service.ExecQuery( "SELECT Name,FullName FROM
Win32_UserAccount");
var f = new Enumerator (wqlquery);
for( ; !f.atEnd(); f.moveNext()){
        var p = f.item();
        WScript.Echo("Username : " + p.Name + '\n' + "FullName : " + p.FullName );

-----Original Message-----
From: pen test [mailto:pentestlist () hotmail com]
Sent: Wednesday, January 16, 2002 3:15 PM
To: pen-test () securityfocus com
Subject: how to Dump users with Dial in rights?


I am doing an audit of a windows NT network (nt domain) and they do not have
a list of users with dial in rights.  Is there any tool to query and check
which users have this right?  They company has 1500 + employees so I am
trying not to go through one by one.

thanks

_________________________________________________________________
Join the world’s largest e-mail service with MSN Hotmail.
http://www.hotmail.com


----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/





----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/