About your device's administrator account
On a computer, an administrator account or group has complete access to make system changes on that computer. You should use the administrator account only when it's required for certain tasks, such as modifying other user accounts on the device, installing software, and changing network settings.
You need to know the administrator password on your computer to make such changes.
On this page:
The account named "Administrator" has all possible rights, as does everyone in the Administrator local security group, while other users have some minor administrative rights (e.g., they can modify anything in their home directories). A computer must have at least one administrator account.
Note: At Indiana University, the University Information Security Office (UISO) recommends that you normally refrain from running your Windows computer as an administrator. For more, see What is the principle of least privilege?
To use administrative rights:
- You will be prompted for an administrator account name and password when needed; this feature is called User Access Control, and it is enabled by default. UITS recommends you leave it enabled. If you do disable it, you can re-enable it by following instructions from Microsoft's TechNet.
- If a particular software program on your computer requires you to be logged in as an administrator, right-click it from the Start screen or menu, and select .
Unix, Linux, BSD, Solaris, and Mac OS X
Unix computers and Unix-based operating systems typically have one unrestricted account, normally called "root" or the "superuser". The root user has full access to all files and directories on a Unix system, and many low-level tasks must run as root. In addition to the root user, some Unix implementations have a group of administrative users, sometimes called the "wheel" group. Administrator accounts do not have full access to the operating system, but can escalate their status to root to perform certain tasks.
Because the root user has such unrestricted access, administrators
typically do not log into it or operate as root continuously.
Instead, they assume root-level access using the
command. At a command prompt, permitted users can enter
sudo and their password, and then execute the command
they normally don't have access to. Alternatively, if administrators
need to operate for a period of time with root privileges, at a
command prompt they can enter
sudo -s and their password,
and then function as root within the terminal window for as long as
they need to.
Normal users on a Unix system do not have access to
and cannot perform system-related tasks. However, they still have the
ability to install some software and customize their environment.
Each user has a home directory in which to save documents, install
programs, and maintain personal preferences.
This is document aorq in the Knowledge Base.
Last modified on 2014-06-04.
- Fill out this form to submit your issue to the UITS Support Center.
- Please note that you must be affiliated with Indiana University to receive support.
- All fields are required.