Admin Accounts: Separate Rights vs. One Account

TL;DR

Using two accounts for an Administrator – one with full rights and another for everyday tasks like email – is generally more secure than using a single account all the time. It reduces the risk of accidental damage, malware spread, and makes it easier to track who did what. However, it adds complexity for the user.

Benefits of Two Accounts

1. Reduced Attack Surface: If your everyday account gets compromised (e.g., through a phishing email), attackers don’t automatically have full Administrator rights.
2. Protection Against Accidental Changes: It’s easy to make mistakes when logged in as an administrator. A separate daily-use account prevents accidental system changes that could cause problems.
3. Improved Auditing: Separate accounts allow you to clearly track which actions were performed with administrative privileges and which were done under a standard user context. This is vital for cyber security investigations.
4. Malware Containment: If malware infects your daily-use account, it’s less likely to spread throughout the system if that account doesn’t have administrator access.
5. Principle of Least Privilege: Following this best practice means users only have the permissions they need to do their job. A separate admin account enforces this principle.

Drawbacks of Two Accounts

1. Inconvenience: Users must remember two sets of credentials and switch between accounts frequently. This can slow down tasks.
2. Password Management: Managing two passwords securely is more challenging than managing one. Consider using a password manager.
3. Potential for Errors: Users might accidentally perform administrative tasks on the wrong account, or forget to use the admin account when needed.
4. Increased Support Requests: Users may require assistance with switching accounts or remembering passwords.

Setting Up Two Accounts (Windows Example)

1. Create a Standard User Account: This will be your daily-use account.
   • Go to Settings > Accounts > Family & other users > Add someone else to this PC.
   • Follow the prompts to create a local or Microsoft account.
2. Create an Administrator Account: This will be your elevated rights account.
   • Open Command Prompt as administrator (search for ‘cmd’, right-click, and select ‘Run as administrator’).
   • Type the following command to create a new admin user:

     net user /add Administrator password /active:yes

     (Replace ‘Administrator’ with your desired username and ‘password’ with a strong password.)

   • To make this account an administrator, type:

     net localgroup administrators Administrator /add

3. Disable the Built-in Administrator Account (Optional but Recommended): For enhanced cyber security.
   • In Command Prompt as administrator, type:

     net user Administrator /active:no

Best Practices

• Strong Passwords: Use strong, unique passwords for both accounts.
• Multi-Factor Authentication (MFA): Enable MFA wherever possible, especially on the administrator account.
• Account Monitoring: Regularly review audit logs to identify any suspicious activity.
• User Training: Educate users about the importance of using the correct accounts for different tasks and how to switch between them securely.
• Regular Updates: Keep your operating system and software up-to-date with the latest security patches.