General discussion

Locked

IT Seg of Duties

By fimos ·
I'm interested in opinions on acceptable practices for granting and monitoring privileged accounts in use in client-server/discretionary access based systems. In Mainframe/midrange it seems like this is much easier to control. I have my own opinions but am looking for some validation or points I haven't thought of.

This conversation is currently closed to new comments.

3 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

by p.j.hutchison In reply to IT Seg of Duties

I my case, we assign the minimum rights needed for a person to do their job and add/remove rights as when needed. Some people may require access to everything but they need to be trusted with those rights.
Enabling auditing of any changes to systems (such as Windows or Unix systems) will help you to track any changes made to systems. So if anything goes wrong you may be able to track who did what...

Collapse -

by fimos In reply to

Poster rated this answer.

Collapse -

by fimos In reply to IT Seg of Duties

This question was closed by the author

Back to Security Forum
3 total posts (Page 1 of 1)  

Related Discussions

Related Forums