[vc_row][vc_column][vc_column_text]Shadow Admin accounts are user accounts that have sensitive privileges – not because they are members of a privileged Active Directory (AD) group, but because they were inadvertently assigned permissions that can allow them to take over other privileged accounts, and leverage them to reach their target systems to compromise them.
If a Shadow Admin account is compromised, it can be very risky for the organization. After all, these user accounts can be used to compromise additional accounts and gain administrative privileges.
Yet identifying these accounts and restricting their access is not a trivial task.
A Deeper Look at Shadow Admins
A Shadow Admin is a user who is not a member of AD administrative groups like Domain Admins, Enterprise Admins, Schema Admins, Administrators, etc. Yet this user will have rights to some sort of ...