End-user Workstation Administrative Privileges FAQ

Q: Why are workstation administrative privileges being removed?

A. To adopt one of the most important security best practices called Principle of Least Privilege. All University employees should use the least set of privileges necessary to operate their computers. By adhering to this principle, we limit the damage that can result from a poorly written application, virus, malware, ransomware, an accident, or error.

Q: When does this change take effect?

A. This change will take effect as workstations are replaced or reimaged/reconfigured.

Q: What should I do if I need administrative privileges on my workstation to complete a task or to do my job?

A. If you need administrative privileges to complete a task, contact your IT support professional and they will assist you in completing the task and determine if you have a use-case for longer-term admin access.

Q: How do I make a request for workstation administrative privilege access?

A.  If you need administrative privileges to do your job, please contact your IT Professional or Help Desk to start the approval process. All requests will be reviewed on a case-by-case basis.

Q: How long will I have my administrative access on my workstation?

A. The usage and necessity of all local administrator accounts shall be audited every six months. To continue possessing an account, a valid business purpose must continue to exist.