What are reason to refuse sharing ADMIN password

netappmagic · ‎2015-03-30

The user is asking for ADMIN access, and the problem is my manager approved the reqeust.

What should a storage admin do, and what reasons can I present to them, and say NO to them?

PLease share your thoughts

hariprak · ‎2015-03-30

Hi,

Never share admin password with the users.. thats a big no no! Each user should have own username/login and then be given admin rights for auditing and control purposes.

Thanks

If this post resolved your issue, help others by selecting ACCEPT AS SOLUTION or adding a KUDO.

terryzolinski · ‎2015-03-31

How about this one reason that should be enough to hit this home?

A user with enough power to do, but not enough knowledge to do, has the ability to destroy all of the data you hold dear. Downtime and data loss are already a concern when you have people who are trained to do this, so imagine what someone with no training could do with those tools?

Security, data protection, business resiliency, uptime. All are valid reasons not to. I thought this stuff was common sense and that's why they hire IT people. Conceivably, this manager could have anyone he finds on the street manage his storage...

I would figure out what they are trying to accomplish though, because it's quite odd that a user would ask for admin access to the netapp storage system. Maybe they are just asking for administrative access on the NTFS file system.