Should the CTO have domain administrator access?

Should a CTO or SVP of technology have domain administrator access? In this identity and access management expert response, learn whose job description should include domain administrator privileges.

David Griffeth

Is it standard for the CTO or SVP of technology to have domain administrator privileges?

This depends on the size of the company; a CTO may have a broad range of responsibilities, which may require elevated...

Step 2 of 2:

You forgot to provide an Email Address.

This email address doesn’t appear to be valid.

This email address is already registered. Please login.

You have exceeded the maximum character limit.

Please provide a Corporate E-mail Address.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

privileges.

A better way to assess appropriate privileges is to think in terms of job responsibilities. Do the day-to-day responsibilities of the CTO or SVP of technology require domain administrator privileges? If so, it is appropriate; if not, the security manager should limit his or her account privileges to the minimum required to do the job, just as everyone else in the company should.

The CTO should understand the concept of access appropriate to role and limiting account privileges. There should be a process in place to evaluate every privileged account on a periodic basis. In doing this, you take away the subjectivity of the conversation and introduce an objective process based on sound business requirements.

More information:

Is it possible to create multiple root user IDs to prevent root password sharing? Find out more.
Learn how to write a batch file that allows users local admin access for a short time.

This was last published in December 2008

Cybercriminals auction off admin credentials for $3,000

U.S. government domain officials to start using 2FA

How a domain-specific language affects configuration management

Set up remote domains to control Exchange messaging

Please create a username to comment.

Cloud security risks and the countermeasures you need now

Enhance your cloud threat protection with 5 tools, and more

Privacy-preserving machine learning assuages infosec fears

Evolution of WLAN technology improves data rates, security

Future of wireless communications unifies 5G and Wi-Fi 6

SASE market emerges as the 'wave of the future'

Dell, PwC, Peapod accelerate digital transformation initiatives

4 ways CIOs can drive IT cost savings during the pandemic

Post COVID-19 strategies for CIOs on leading through crisis

Microsoft launches Windows File Recovery tool

Citrix microapps look to ease office reopening

VMware Workspace One unifies reshaped digital workforces

SUSE buys Rancher Labs for Kubernetes expertise

Why enterprises choose multi-cloud environments

Oracle Cloud at Customer adds Dedicated Regions

Executive interview: Toyota’s Melody Ayeli on the significant role of ITAM

Aryaka, 8x8 enhance enterprise communications across managed SD-WAN

Facebook iOS SDK flaw linked to onset of Spotify app outage blighting Apple device users

Related Resources

Dig Deeper on Privileged access management

Cybercriminals auction off admin credentials for $3,000

U.S. government domain officials to start using 2FA

How a domain-specific language affects configuration management

Set up remote domains to control Exchange messaging

Related Q&A from David Griffeth

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.