{"id":2775,"date":"2013-10-18T15:19:29","date_gmt":"2013-10-18T09:49:29","guid":{"rendered":"https:\/\/www.qadit.com\/blog\/?p=2775"},"modified":"2013-10-18T15:19:29","modified_gmt":"2013-10-18T09:49:29","slug":"why-%e2%80%98administrator%e2%80%99-privileges-should-not-be-given-to-end-users","status":"publish","type":"post","link":"https:\/\/qadit.com\/blog\/why-%e2%80%98administrator%e2%80%99-privileges-should-not-be-given-to-end-users\/","title":{"rendered":"Why \u2018Administrator\u2019 privileges should not be given to end users?"},"content":{"rendered":"<div style=\"text-align: justify\">One of the IT security best practices in desktop usage is to run a computer on the least privilege required. This means, an end user should log into his PC \/ laptop as a standard user and not as an \u2018administrator\u2019. This is applicable to both, home and enterprise environment. The advantages of such least privilege computing are listed below.<!--more--><\/div>\n<div style=\"text-align: justify\"><strong>1. Malware protection<\/strong><\/div>\n<div style=\"text-align: justify\">Most malware fail in their goal of creating havoc to the PC \/ network, as they do not have \u2018Administrator\u2019 privilege to get installed.<\/div>\n<div style=\"text-align: justify\"><\/div>\n<div style=\"text-align: justify\"><strong>2. License Compliance<\/strong><\/div>\n<div style=\"text-align: justify\">Users cannot install unlicensed software with out administrator privilege. This preventive control is better than a detective control of auditing for unlicensed software periodically.<\/div>\n<div style=\"text-align: justify\"><\/div>\n<div style=\"text-align: justify\">\n<div><strong>3. IS Policy Compliance<\/strong><\/div>\n<\/div>\n<div style=\"text-align: justify\">Information Security Policies of enterprises require certain configuration settings to be made on the computers to secure the enterprise IT assets.\u00a0 These configurations may relate to password settings, anti-virus settings, audit trails etc. If end users have admin privileges, they may change the computer configuration settings to their likes and thereby open the enterprise to security risks and IS Policy non-compliance.<\/div>\n<div style=\"text-align: justify\"><\/div>\n<div style=\"text-align: justify\"><strong>4. Fewer Helpdesk Calls<\/strong><\/div>\n<div style=\"text-align: justify\">By avoiding malware installation and computer mis-configurations through \u2018admin\u2019 privilege restriction, the support calls logged to IT Help Desk drop dramatically whereby the IT team can focus on more productive initiatives. In case a user needs an elevated privilege for any particular purpose, he may request the IT team for a limited release of \u2018Admin\u2019 privilege under IT supervision.<\/div>\n","protected":false},"excerpt":{"rendered":"<p>One of the IT security best practices in desktop usage is to run a computer on the least privilege required. This means, an end user should log into his PC \/ laptop as a standard user and not as an \u2018administrator\u2019. This is applicable to both, home and enterprise environment. The advantages of such least &hellip; <\/p>\n<p class=\"link-more\"><a href=\"https:\/\/qadit.com\/blog\/why-%e2%80%98administrator%e2%80%99-privileges-should-not-be-given-to-end-users\/\" class=\"more-link\">Continue reading<span class=\"screen-reader-text\"> &#8220;Why \u2018Administrator\u2019 privileges should not be given to end users?&#8221;<\/span><\/a><\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","enabled":false},"version":2}},"categories":[12],"tags":[],"class_list":["post-2775","post","type-post","status-publish","format-standard","hentry","category-itsec"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p9AH7Q-IL","_links":{"self":[{"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/posts\/2775","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/comments?post=2775"}],"version-history":[{"count":0,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/posts\/2775\/revisions"}],"wp:attachment":[{"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/media?parent=2775"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/categories?post=2775"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/tags?post=2775"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}