2 Acct Requirement for Admins
Darril's book discusses this as an account management policy. I have heard that if a user is using an administrator account, the account receives two SIDs. One of them is for a standard user account and the other for the admin account. The user is not granted the escalated privileges of the administrator account until they do something that actually requires those privileges. If I am correct (and I don't know if I am) then why is there a two account requirement for administrators in order to reduce the exposure to attack? Wouldn't that exist automatically if what I said is correct?