Goto Blog Home PageRevell Research Systems: Alastair Revell's Web Log
On this page....
Archive
<January 2020>
SunMonTueWedThuFriSat
2930311234
567891011
12131415161718
19202122232425
2627282930311
2345678

RSS 2.0     Atom 1.0     CDF

Summary
Search
Navigation
Categories
Blog Roll
About Alastair Revell
Alastair Revell is the Managing Consultant of Revell Research Systems, a Management and Technology Consulting Practice based at Exeter in the United Kingdom.
Contact Alastair Revell
 EMail Revell Research Systems Limited Email Me
Copyright
Legal & Other Notices
Sign In
Disclaimer
The material published in this web log is for general purposes only. It does not constitute nor is it intended to represent professional advice. You should always seek specific professional advice in relation to particular issues. The information in this web log is provided "as is" with no warranties and confers no rights. The opinions expressed herein are my own personal opinions.

Web Log Home | Welcome to this Web Log | Using this Web Log | New to Blogs? | About Revell Research Systems | Contact Details

Review Entries for Day Thursday, July 13, 2006

I believe that a really useful administrative facility that should be built into Microsoft Windows is the ability to login as a user by using an administrator's credentials. 

System Administrators would often benefit from being able to log into a user's account to test the user's environment. Currently, this would either be done by either knowing the user's credentials or by resetting the password on the user's account to gain access. The former method works well for small business, but does have obvious security implications. The latter is a pain for the end-user when "strict" password procedures are in place governing their use of previous passwords and the like.

I envisage that an administrator faced with the CTRL-ALT-DEL dialogue should be able to press a button to extend the dialogue with an extra "Login As" textbox. They should then be able to provide their own username and password as well as the account name they are intending to login to. I would expect that this would require the administrator concerned to have been granted a "proxy right" and that its use would be written into the system's security event log.

This would then allow an administrator to use the account without any elevated privileges. It would also be useful if the administrator had the ability to login and opt out of group policies or to login to the account with their own administrative rights.

More about Alastair Revell

Thursday, July 13, 2006 10:50:30 PM (GMT Standard Time, UTC+00:00)  #
Comments [0] Security | Trackback

Comments are closed.
RSS 2.0 Feed If you enjoyed reading an article on this blog, why not subscribe to the RSS 2.0 feed to receive future articles?
   
Revell Research Systems Logo Visit the Revell Research Systems Web Site if you want to learn more about this management and technology consulting practice.