The principle of least privilege is a cybersecurity principle by which a user is only given the permissions they need to do their job, and no more than that. For example, joining a Windows Server virtual machine to an Active Directory domain does not necessarily require an admin to be a domain administrator but rather only have custom permissions on the Active Directory OU for the specified task of computer objects domain join.
