Posted: Fri Jul 27, 2012 7:02 pm Post subject: Local Admin Rights Policy Good/Best practices
I wondering to know whether is there any Good/Best practices regarding the policy to provide admin rights on user computer.
Shoud the right be Permanent or temporary?
- How long is temporary?
- Sould the computer be monitored time to time?
Joined: Mar 04, 2008 Posts: 1890 Location: Helensburgh
Posted: Fri Jul 27, 2012 7:39 pm Post subject:
Admin rights should depend on authority and responsibility.
Anyone who is given admin rights is given responsibility. Anyone who logs in as admin should have authority to log in and authority to perform whatever tasks they intend.
Monitoring user computers - for what purpose? Once you have established the reason for monitoring, then it is easy to work out the methods and frequency etc. If the user is given great authority over the computer then you may be monitoring as a service to the user (or, properly, to the customer behind the user). _________________ "Method goes far to prevent trouble in business: for it makes the task easy, hinders confusion, saves abundance of time, and instructs those that have business depending, both what to do and what to hope."
William Penn 1644-1718
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum