May 16, 2024, 11:22 a.m. | /u/Equal-Swordfish3662


I'm working on a solution to secure workstation admins accounts. Here's what I've come up with so far:

We'll have three types of accounts:

1. A standard 'everyday' user account.
2. A privileged domain account with access to consoles such as SCCM and Intune.
3. A non-privileged domain account that will serve as a local admin on user machines.

Both the privileged and non-privileged domain accounts will be placed in the 'Protected Users' group to safeguard against credential theft.

For …

access account accounts active directory cybersecurity directory domain far intune least privilege non privilege privileged sccm solution standard types windows working workstation

Sr. Product Manager

@ MixMode | Remote, US

Information Security Engineers

@ D. E. Shaw Research | New York City

Endpoint Security Engineer

@ Sabre Corporation | GBR LNDN 25 Walbrook FL5&6

Consultant - System Management

@ LTIMindtree | Bellevue - Washington - USA, WA, US

Security Compliance Officer - ESO

@ National Grid | Wokingham, GB, RG41 5BN

Information Security Specialist (Governance and Compliance)

@ Co-operators | Ontario, Canada; Saskatchewan, Canada; Alberta, Canada