Least Privilege Management for Mac OS

Typically, every Mac® user receives local administrator access or knows the administrator account password by default. This can create serious security, compliance and operational challenges for desktop and operations teams. Given the proliferation of corporate-supported Macs and Bring Your Own Device (BYOD) programs, it’s clear that IT organizations face a growing problem. Until now, there has been no effective or efficient solution to address the problem of OS® users with excessive privileges.

How can IT organizations efficiently remove Mac administrator rights and enforce least privilege without impacting Mac user productivity?