Home > Ask the Enterprise Desktop Experts > Questions & Answers > Should I give my access control group admin rights?
Ask The Enterprise Desktop Expert: Questions & Answers
EMAIL THIS

Should I give my access control group admin rights?

Kevin Beaver EXPERT RESPONSE FROM: Kevin Beaver

Pose a Question
Other Enterprise Desktop Categories
Meet all Enterprise Desktop Experts
Become an Expert for this site


Advice for securing Windows
Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google


>
QUESTION POSED ON: 23 September 2006
I work for a large hospital and now our access control group is asking for Domain Admin rights and I am not sure I want to give this to them as they don't understand Active Directory and the risks of having those rights. How can I determine whether or not to grant my group these rights?

>
EXPERT RESPONSE
This is a common request/demand. Has your access control group given a good reason as to why they need such rights? If they can justify the business need, then I don't see why you couldn't reasonably create accounts for each user, enable logging, and let them do their thing. It sounds like the 'access control' group may have some justification for this anyway.

So, you need to determine what access is really needed, why it's needed, when it's needed, and so on. You do have a documented access policy that covers this, right? If not, now's the time to create one based on risks and business need. A change management policy and procedures need to be in place as well to make sure everyone is on the same page regarding making system changes. Once these are established, then use Windows audit logging and the right tools from vendors such as Ecora and Configuresoft to make sure they're not abusing their rights and everything's being doing properly.


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google


RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary



Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.
Browse our Expert Advice



Desktop Solutions - Windows for Enterprise
HomeTopicsITKnowledge ExchangeTipsMultimediaWhite PapersBlogs
About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
SEARCH 
TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Reprints  |  Site Map




All Rights Reserved, Copyright 2008, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts