![Full Logo.png]](https://help.devicie.com/hs-fs/hubfs/Full%20Logo.png?height=30&name=Full%20Logo.png){kind=small}
ACSC E8 Nov 2023-ML1 Restrict admin privileges
Overview:
The Devicie Essential Eight Maturity Level 1 Restrict Administrator Privileges (Nov 2023) configuration is to meet the Australian Cyber Security Centre’s guidance for this mitigation strategy.
Intune Description:
E8 ML1 Restrict Admin Privileges (Nov 2023)
Scope:
This baseline should be applied to Windows devices.
Policy Impact Areas:
When deployed, this policy will impact:
-
Blocking local log in
-
Blocking remote desktop services log on
Deployment Notes
-
Pre-Deployment Considerations:
-
Review any other administrative control products or configurations in use
-
-
Post-Deployment Validation:
-
Attempt to use elevated credentials
-
Known Issues and Resolutions
-
Issue 1: None at this time
-
Resolution: N/A
-
Configuration Settings:
|
Name |
Value |
|
User Rights |
|
|
Deny Local Log On |
*S-1-5-32-546 |
|
Deny Remote Desktop Services Log On |
*S-1-5-32-546 |
|
Devicie Template Name |
ACSC E8 Nov 2023-ML1 Restrict admin privileges |
|
Default Intune Deployed Name |
Devicie - ML1 Restrict admin privileges |
|
Version |
1.0 |
|
Template Last Updated |
Nov 18, 2024 |
|
Document Last Updated: |
Jul 24, 2025 |