Restrict administrative privileges

Only staff who routinely require administrative privileges during their day-to-day responsibilities should have full administrative access. When logged into an administrator account, machines are more vulnerable to malware or a cyberattack. It is important to create limited user accounts for staff members who only use machines for productivity programs and browse the web.