Role Classification

[initroot]

So wanted to know how you guys see the definitions of Superusers and Administrators.

For IDM role classification have you ever distinguished between them?

My "understanding" would be that superusers are normal users with elevated privileges and access to the whole system, they can't assign themselves administrative rights.
The administrators would have all the privileges possible and be able to manage administrative rights.

Where do you however draw the line, how would you classify them?

 

[Genisys]

Give super users limited rights on their computers. They need to earn Admin rights, can't just give admin rights to anyone.

 

[initroot]

Give super users limited rights on their computers. They need to earn Admin rights, can't just give admin rights to anyone.

I'm looking at this more from a governance/framework side and the definition. Just like to get some ideas on how other people in IT would classify these roles.

 

[Devinity]

We only have super user access in our testing phase of a project.

In our company, basically a super user can do everything any other user can, except admin. This is to test the various roles/types of user access. If there are workflows involved, it makes it so much easier to test the full process instead of having to login in an out of accounts to do testing.