Well, I suppose this is not entirely relevant, but I learned a neat trick in college when a friend was working on his server 2003 project and forgot the domain controller password. We of course had physical access to the machine, which is not an entirely realistic situation but hey, the guy wanted access to his project and i thought it was kinda cool.
The method was pretty basic, start the machine in Directory service mode which disables active directory. Once active directory is disabled log onto the machine locally which is doable if your crafty enough, once you are in the local machine you essentially create a service that will reset your domain password by running a registry key. The whole process is kinda nifty and useful if your messing around with server and forget your password, but it also puts stress on the importance of physical protection of your machine, which I see neglected far too often. xxx.petri.co.il/reset_domain_admin_password_in_windows_server_2003 _ad.htm