We have an admin account we give out to users that unfortunately has the same password for all users. We want to ensure that they cannot just Option + Enter (what is this feature called?) at the login screen to log into the current account, if that makes sense.
I saw in our Config Profile, there is an ability to deny LDAP accounts from logging in... but there is none for a local account.
So my question is, how do I stop users from being able to use Option Enter and others it does not? And is there a way to deny a local account to be able to login at all and only provide authentication?