Re: Local Admin Access

[Curt Kappenman <ckappenman () ANDERSONUNIVERSITY EDU>]

We removed Admin rights from all devices (Windows, Mac, and Linux) a little over a year ago.  We thought the kick-back 
would be greater but it has only caused difficulty a few times.  Those situations are handled on a case by case basis.  
It has definitely made a reduction in service calls because someone install a third-party software package that locked 
up the system.  On the Mac side, which seems to have the admin rights need a little more often then the Windows side, 
we have a script that runs through our MDM software that gives admin rights for 30 minutes to allow for software 
installs and upgrades.  Once the script runs, it cannot run again for 24 hours.  This helps keep down abuse.

Curt Kappenman
Anderson University
Anderson, SC

From: The EDUCAUSE Security Community Group Listserv <SECURITY () LISTSERV EDUCAUSE EDU> On Behalf Of Frank Barton
Sent: Wednesday, April 7, 2021 1:25 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Local Admin Access

we do a "generally no", with the option to request local admin.

When the request comes in, the user gets a separate account for local admin temporarily until IT Governance can meet 
and review the request.

Frank

On Wed, Apr 7, 2021 at 1:04 PM Emilie Kunze <ekunze () austincc edu<mailto:ekunze () austincc edu>> wrote:
We are curious how other institutions handle local admin access for faculty/staff?

Thank you,
Emilie


[https://lh5.googleusercontent.com/8TGVFPsiEyy3_TXFjMAe-lCBkyXwyGevnGxIvGdvcCw3hjOZXmPHYbmZT0pi_gZG5RkwAY-Hr0A_XFdoepzZEFuNDmYnRMqD-9ud3Hyk-fMTIXJpmQ2qt5M1SGUDHcrQ6M_D9CrN]<https://austincc.edu/>

Emilie Kunze

IT Security Analyst Sr.

Acting Information Security Officer

Office of Information Technology

ekunze () austincc edu<mailto:ekunze () austincc edu>  | o 512-223-1157

ACC Information Security<https://it.austincc.edu/departments/information-security/>

      
[https://lh3.googleusercontent.com/3i9G30Fg3ZAiC3mZdiMpvQRradC3TjjCk-pdmKCGV_fzPcMSzNSQE7rf9y9DqgXUxJxxl35vf4rLx4n1kM_DpBsJJjbxv9EcmSmUwSHZdlZxsP2Dc_UngTyQv3pHCl6VhsG5Lfio]
 <https://www.facebook.com/accinfosec/>     
[https://lh5.googleusercontent.com/-i9vIi5rgXE71dcrX6-3bGqGXXd0B3y8YE4Q25USF9da5jZ2Slz-TeACb7E26aea5om8HOq35WMxxecKyIBRBaAEAipDnYr8hice3MMzGl1G-l7r9tpbmZ8S_SCmCRsTJ8yWtK3l]
 <https://twitter.com/ACCInfoSec>


                                                  CONFIDENTIAL NOTICE
This communication, including any attachments, may contain confidential information and is intended only for the 
individual or entity to which it is addressed. Any review, dissemination, or copying of this communication by anyone 
other than the intended recipient is strictly prohibited. If you are not the intended recipient, please contact the 
sender by reply e-mail, delete and destroy all copies of the original message.


**********
Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the 
person who sent the message, copy and paste their email address and forward the email reply. Additional participation 
and subscription information can be found at https://www.educause.edu/community


--
Frank Barton, MBA
Security+, ACMT, MCP
IT Systems & InfoSec Administrator
Husson University
PGP Key Fingerprint: 0249DC644EC78D2F6B5CD2C6C94D3EDB57946437

**********
Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the 
person who sent the message, copy and paste their email address and forward the email reply. Additional participation 
and subscription information can be found at https://www.educause.edu/community

**********
Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the 
person who sent the message, copy and paste their email address and forward the email reply. Additional participation 
and subscription information can be found at https://www.educause.edu/community