Windows Server 2025 users with administrative privileges must have separate accounts for administrative duties and normal operational tasks.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-277985	WN25-00-000010	SV-277985r1182240_rule	CCI-000366	medium
Description
Using a privileged account to perform routine functions makes the computer vulnerable to malicious software inadvertently introduced during a session that has been granted full privileges.
STIG			Date
Microsoft Windows Server 2025 Security Technical Implementation Guide			2026-02-20

Details

Check Text (C-277985r1182240_chk)

Verify each user with administrative privileges has been assigned a unique administrative account separate from their standard user account. If users with administrative privileges do not have separate accounts for administrative functions and standard user functions, this is a finding.

Fix Text (F-82420r1180660_fix)

Ensure each user with administrative privileges has a separate account for user duties and one for privileged duties.