U.S. flag

An official website of the United States government

Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Active Directory Oversight Needs Improvement

Report Information

Date Issued
Report Number
2020-20-006
Report Type
Audit
Joint Report
Yes
Participating OIG
Treasury Inspector General for Tax Administration
Agency Wide
Yes (agency-wide)
Questioned Costs
$0
Funds for Better Use
$0
View Report

Recommendations

The Chief Information Officer should review the Domain Admin groups in each ISRP AD forest and ensure that system administrators have only one privileged account and additional accounts belonging to a single user are removed.

The Chief Information Officer should create a privileged account naming standard for the ISRP AD forests to distinguish a general business role account from a privileged account and ensure that these accounts are granted only Domain Admin group rights or other administrative level rights.