Guide to Removing Local Admin Rights
An FRSecure Self-Help Document of Guidelines and Best Practices
Attackers thrive on the misuse of administrative privileges. By making too many people local administrators, you run the risk of people being able to download programs on your network without proper permission or vetting. One download of a malicious app could spell disaster. Giving all employees standard user accounts is better security practice.
This guide is meant to be a starting point for your business. It paints a picture of why it's important to remove local admin rights for those that don't need it and how you can convince management to let you do so.
This document will help you:
- Learn why removing local admin rights is critical
- Communicate the removal of local admin rights to decision-makers
- Shape recommendations into actions and policies while logging the changes