Default Admin Id on NT servers

The default admistrator id (on NT) is recommended to be changed or revoked after the install of servers for best practice security. However, there are some apps or services that needs the admin id active. What can you do to prevent others from using the admin id maliciously.