Apps and Account Information

[James Rawlyk]

This is going to sound like a techie "Dear Abby".  For those of you that are Super Admins in your Google Apps domain, do you use two separate accounts - one account for admin functions and the other for normal day to day activities?  My concern is stemming from all these amazing apps that are now integrated with Google Drive.  I know that technically this should all be safe because the authentication is handled differently but it still seems like a no-no in my book (yes, I'm a leftover from a time when you just didn't do this sort of thing for security purposes....)  If someone has an analogy or a more detailed explanation that will help me wrap my brain around this, I'd appreciate it.

Signed,

Paranoid

[Adam Nave]

We use separate accounts for additional safety. The admin accounts pretty much only get used from our workstations, our regular accounts could get used anywhere and are much more likely to encounter something malicious (for instance, keyloggers at an internet cafe). With the admin accounts we don't use most of the services, we forward the mail and they're just for Admin console work. That's more of a matter of logistics - I already have an institutional account and a personal gmail account, there's no way I want to deal with a second institutional account with its own set of docs and all the other stuff.

The third-party app access doesn't particularly worry me, that type of thing has been around for a while now and it seems like a pretty robust system. It concerns me in the same way that accidentally sharing something with the wrong person concerns me - possible, but unlikely to happen if you're careful.

One thing we did do is add some read-only admin rights to our personal accounts so it's not always necessary to switch over just to look up someone's status or find the support contact info.

--Adam

Confidentiality Notice: This E-mail message, including any attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply E-mail and destroy all copies of the original message.

--
You received this message because you are subscribed to the Google Groups "Northcentral Apps Users" group.
To view this discussion on the web visit https://groups.google.com/a/appsusersgroup.com/d/msg/northcentral/-/iZemqh8jT3EJ.
To post to this group, send email to northc...@appsusersgroup.com.
To unsubscribe from this group, send email to northcentral...@appsusersgroup.com.
For more options, visit this group at http://groups.google.com/a/appsusersgroup.com/group/northcentral/?hl=en.

--
Adam Nave, CISSP
Linux/Unix Systems Administrator
Macalester College