The all-powerful local administrator accounts in Windows carry significant security risks, and improper management could lead to disastrous situations. It is believed that more than 90 percent of the security vulnerabilities in Windows arise due to local admin rights. From a security perspective, though local admin accounts by themselves don't cause issues, not managing them properly leads to serious repercussions.
This white paper analyzes the common practices in managing local admin accounts, the associated security risks, the strategies to mitigate the risks, and the comparative merits and demerits of different approaches.