Privileged user accounts (excluding local administrator accounts) cannot logon to unprivileged operating environments.
Topic
Separate privileged operating environments
Applicable to
all
History
Sep 2024
Privileged user accounts (excluding local administrator accounts) cannot logon to unprivileged operating environments.
References to ‘privileged accounts’ were changed to ‘privileged user accounts’ in order to more closely match Microsoft Active Directory account types (i.e. ‘users’ and ‘computers’). Note, the definition of privileged accounts (which referred to such accounts as being a combination of privileged user accounts and privileged service accounts) has been removed. Privileged service accounts are now treated as a subset of privileged user accounts.