Runbook: Create Admin Account¶
Purpose¶
Create a separate administrative account for a user.
Naming¶
Example:
PowerShell example¶
New-ADUser `
-Name "adm-gnolasco" `
-SamAccountName "adm-gnolasco" `
-UserPrincipalName "adm-gnolasco@corp.gntech.lab" `
-Path "OU=Tier1,OU=Admin,DC=corp,DC=gntech,DC=lab" `
-Enabled $true `
-AccountPassword (Read-Host -AsSecureString "Temporary Password")
Validation¶
- Account exists in correct OU.
- Account is not used for daily logon.
- Group membership is documented.