Stan, the new HR manager, wants everyone in his department to have access to create and delete accounts to streamline the process for getting new hires setup in the system. Why is this not a good idea?

This does not keep with the principle of least privilege
HR employees are not usually on the Access Control List (ACL)
This could enable tailgating
This could allow HR employees to by-pass privacy filters, though it isn't that big of a threat since they are HR

Windows Operating Systems
Other Operating Systems & Technologies
Security
Software Troubleshooting
Operational Procedures

Wipe Score