HI
we have an on prem infrastructure alongside O365 in a hybrid
currently we have our IT staff using just 1 account which has elevated privileges
They use this for logging onto their own machines and for providing support to end users and maintaining servers.
this account is synced to Azure AD
In Azure AD they have service rights for the cloud apps
To leave this more secure im thinking of reducing these accounts to a standard account and creating a new high privilege account for local infrastructure and cloud infrastructure.
What is best practice?
Should i go with
1 local standard account synced to 365 using a license
1 local admin account
1 cloud admin account shouldn't need a license for administration
or
1 local standard account synced to 365
1 local admin account synced to 365 using a license
Our community of experts have been thoroughly vetted for their expertise and industry experience.
The Most Valuable Expert award recognizes technology experts who passionately share their knowledge with the community, demonstrate the core values of this platform, and go the extra mile in all aspects of their contributions. This award is based off of nominations by EE users and experts. Multiple MVEs may be awarded each year.
The Distinguished Expert awards are presented to the top veteran and rookie experts to earn the most points in the top 50 topics.