Title
Administrators should be required to access a system using a fully logged and non-administrative account.
Description
Administrators should be required to access a system using a fully logged and non-administrative account. Then, once logged on to the machine without administrative privileges, the administrator should transition to administrative privileges using tools such as Sudo on Linux/UNIX, RunAs on Windows, and other similar facilities for other types of systems.
Reference Item Details
Category: Controlled Use of Administrative Privileges