A good security practice in general (and a requirement of the Cyber Essentials scheme) it is important to ensure that day-to-day work (such as reading/ sending emails, browsing the web, the usual day-to-day stuff!) is only carried out on a standard user account.
Administrator accounts should only be used for administrative purposes (such as installing new software). This is a step by step guide on how to change a local administrator account on a windows device into a standard user account.
How To:
1. Go to the start button Start, which is on the bottom left of your screen. Type Add Edit and then click on 'Add/Edit or remove other users'
2. Click 'Add someone else to this PC'
3. Click 'I don’t have this person’s sign in information'
4.Click 'Add user without a Microsoft account'
5. Create the account (you can name it "Admin"). When choosing a password you should choose one that is at least 12 characters in length in accordance with guidance from the National Cyber Security Centre
It is important that you remember this password as you will need it to install or remove software on your computer. Forgetting this password may result in needing to reset your computer. Make sure you complete the security questions as well.
6. Once you’ve set up and entered all the user details, go to 'Add/Edit or Remove other users' again, click on the account that you have just created and then click 'Change account type'
7. From the drop down select 'Administrator'
Now we have to change your current user account to a standard user account
8. Sign out of the account you are currently on by clicking on the Start button, selecting your profile picture and clicking 'Sign Out'. Don't forget to save any work first!
9. On the bottom left of the screen, select the account you have just created and log into it. You'll have to go through the set up process but it doesn't take long!
10. Go to 'Add Edit or Remove other users' and select on your day-to-day account
11. Click 'Change Account Type' and select 'Standard User'
12. Log out of your administrator account and log back into your day-to-day account
You now have a separate administrator account for installing software or making configuration changes to your device. You should continue using your usual account for day-to-day working.
Any prompts that you get asking for a password when installing software, you will need to enter the password for your newly created Administrator account.
Again, it is extremely important that you remember your password and answers to your security questions that you have setup for the administrator account.
Comments