[log in to unmask]" type="cite">
As mentioned in the Collaborative IT Discussion on Wednesday last week, we have made a small change to the Security Policy on workstations that are part of the Campus domain. We configured the Deny access to this computer from the network right, adding the ETS-LocalAdmins group and the new well-known group Local Account.
[log in to unmask]" height="235" width="790">
This limits the utility of compromised credentials, addressing a common method for moving through an organization and harvesting additional credentials. This configuration change shouldn’t impact the ability to log into a workstation using either a local account or a *-tech account, but you won’t be able to use such an account to connect from one workstation to another.
Please let us know if you have any questions or concerns about this change,