troubleshooting Question

Users with Local Administrator rights.

Avatar of brayn
brayn asked on
OS SecurityIT Administration
7 Comments1 Solution292 ViewsLast Modified:
The company I work for has grown quite a bit over the last few years. Three years ago our locations were linked via site-to-site vpn's,  a domain was created, and all users and computers were joined to that domain. We are a specialty company and most of our users are engineers or technicians that need the ability to install software, so all users have been setup as local administrators.

I started with the company two years ago and immediately pointed out the huge security problem with making users local administrators. The main problem is that all users can browse admin shares on all other computers, especially the executives' computers.

Users still need the ability to install software, but how can I lock down the domain to prevent users from browsing admin shares on other computers in the domain without stopping them from installing software?

Is there a white paper or best practices paper that I can use as a guideline implement a security policy?
ASKER CERTIFIED SOLUTION
enriquecadalso

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Join our community to see this answer!
Unlock 1 Answer and 7 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 7 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros