this post was submitted on 21 Nov 2024
1 points (100.0% liked)

cybersecurity

10 readers
1 users here now

This subreddit is for technical professionals to discuss cybersecurity news, research, threats, etc.

founded 1 year ago
MODERATORS
[email protected]
1
Separate AD Accounts for Different Work Functions (zerobytes.monster)
submitted 4 days ago by [email protected] to c/[email protected]
0 comments fedilink hide all child comments
 
The original post: /r/cybersecurity by /u/DesperateForever6607 on 2024-11-21 10:26:10.

Hello everyone,

Our security team recently proposed an idea to improve account security by requiring separate accounts for different functions for IT team—e.g., one account for daily work, another for email, another for remote VPN, and yet others for firewall or network tasks.

The rationale is to reduce the risk of lateral movement or broader domain access in case an account (like email) gets compromised.

Has anyone else implemented a similar approach?

Would love to hear your thoughts and experiences!

no comments (yet)
sorted by: hot top controversial new old
there doesn't seem to be anything here