Full text of the policy is available here: Limited Local Administrator Rights - PC
Question:
If I need new software, who does the installation?
Answer:
If you’ve requested the software through IT, then IT staff can handle installation for you. All software requests should be placed through IT in order to ensure compatibility, reduce the risks of unintended malware, and manage licensing.
Additionally, those with local admin accounts have elevated privileges, which means they can approve software installations.
Many apps don’t require administrator-level access in order to be installed on your computer.
All software installed on a University-owned computer should be for work-related purposes. Avoid installing personal software, as it may unintentionally result in conflicts or malware.
Question:
What if my software needs to be updated?
Answer:
Most software updates should not require administrator-level privileges. If you receive a prompt to login as an administrator, contact the person in your department with local admin rights, or place a request with IT.
Question:
Will this remove any software already installed on my computer?
Answer:
No; software already installed on your computer won't be removed or impacted by this change in local administrator rights.
Question:
Do I have to wait for IT to visit my office to take care of installations/updates?
Answer:
We're working to establish remote access capabilities so we can install software remotely without having to visit their office. This will enable us to fulfill requests more quickly. Users will need to grant permission for us to access your computer. IT staff will not be accessing computers without your permission.
Question:
Does this affect any of my network storage, such as H: or S: drives, Google Drive, etc?
Answer:
No, this only affects the ability to install software or certain software updates on your University-provided computer to reduce the risk of conflicts or malware infection.
Question:
Can IT track which admin credentials were used to approve a software change?
Answer:
At this time, given our current technical tools and the way our network and computers are configured, the best we can do it determine who is logged into a computer at a given time. We're not able to verify which administrator credentials were used to approve software changes. This may change in the future.
Question:
Why is IT making this change?
Answer:
For multiple reasons.
- We need to reduce the risk of a campus-wide catastrophe happening as the result of someone unintentionally installing malicious software (such as ransomware) that spreads throughout campus.
- We're also laying groundwork to ensure that we're in compliance with various federal laws that protect the security and privacy of University data, such as the Gramm-Leach-Bliley Act.
- The President's Office has mandated that we do everything we can to reduce these risks to campus.
Still need help?
For additional assistance, contact the IT Help Desk.
Related articles