Do you know how many people have local admin rights in your organization? Not just directly, but via nested groups too (gasp). I usually see a lot more access given than is actually needed on Windows servers because it’s difficult to delegate granular server permissions.
