Desktop lockdown and manageability means different things to different organizations. Depending upon who you talk to within an organization, you will hear practices like; applying patches in a timely manner, applying and enforcing group policies, installing endpoint security solutions, and user education. Each of these is correct to a certain extent, however, they leave out the most “un-obvious” Security Risk that almost every organization has, and a risk that that is rarely accounted for: The local Administrator account!
