User accounts that belong to the local Administrators or Domain Admins groups have authority to do almost anything on the systems and networks that they have permission to access. If such an account is taken over maliciously, catastrophic harm could be done to the system or network.
It is important to review the list of members in the local Administrators and Domain Admins groups to ensure that all users with administrative authority are justified.
©2002-2004