We've had a special domain account that gives users certain admin
rights and access to one shared folder where we drop things that need
to be installed, etc. but has other typical admin privileges and
access denied so that can't modify other accounts, etc. Not a single
problem so far and it is great to have every user in a class help with
the installs, upgrades, and so on. If someone were to totally scramble
things up on a machine, we'd just reimage the drive.
On Mon, Feb 6, 2012 at 11:32 AM, Steve Ligett <[log in to unmask]> wrote:
> This was a thought provoking session at VT Fest, and has been a
> thought provoking discussion on the listserv. Not that I'm yet willing
> to give up my servers, but the ideas of users being in charge of their
> backups and their computers is appealing. What about the idea of
> having the ordinary user accounts be ordinary, but also provide an
> admin account they can use?
> Also, are there resources from this session still available on-line?
> On Mon, Feb 6, 2012 at 8:49 AM, Amanda Bickford
> <[log in to unmask]> wrote:
>> I think it is important to say that our students are not full admins, but
>> have an account that is controlled by WGM that gives them a great deal of
>> control over their machine. We still lock down some system settings and
>> network settings. We use Deploy Studio to re-image machines instead of
>> trouble shooting issues. We can re-image a machine in under 10 minutes.
>> Which saves countless headaches.
>> I also don't think this would worked with shared technology and is only a
>> system we use with our 1:2:1 program.
>> On Mon, Feb 6, 2012 at 8:38 AM, Craig Donnan <[log in to unmask]> wrote:
>>> Fortunately, a user can be an administrator in Win 7/Vista and with User
>>> Account Control, this elevation to Admin function involves prompting the
>>> user. Mac has similar elevation prompts. I'm of the belief that if
>>> people have the rights to solve their own problems, it is a good learning
>>> opportunity as well as a move to shift responsibility to the users.
>>> Easy reimaging is one additional aide to this approach.
>>> I'm always looking for others...
>>> On Sun, Feb 5, 2012 at 10:24 AM, Christopher Moody <[log in to unmask]>
>>>> Yes those are additional worries. Every OS manufacturer recommends that
>>>> you do not run day to day usage as admin/root. On Windows systems this is
>>>> the number one reason for vulnerability.
>>>> Chris Moody
>>>> Systems Administrator
>>>> Springfield School District
>>>> [log in to unmask]
>>>> School Information Technology Discussion <[log in to unmask]> writes:
>>>> I would also be concerned about the "accidental" installation choices
>>>> that effect machine performance and can possibly corrupt other software or
>>>> settings. I am thinking in particular about the installations that add trial
>>>> versions of security software, search toolbars or (worse) "shopping helpers"
>>>> etc. or modify settings (browser settings, media players that alter a
>>>> system's file associations, etc.
>>> Craig Donnan
>>> Systems Administrator
>>> Washington West Supervisory Union
>>> 1673 Main St., Suite A
>>> Waitsfield, VT. 05673
>>> (802) 496-2272 x120
>> Amanda Bickford