These are the best practices for securing these accounts:
-
Change the default passwords on both accounts.
-
Do not delete the accounts. Rename them, if desired.
-
Only authorize a limited set of trusted users to use these accounts. These users should be trained in using the accounts responsibly, as well as safeguarding them.
-
Do not use these accounts when testing a solution or troubleshooting a situation. These accounts may not reflect the constraints of a user-created account.
-
Monitor logs for unexpected use of these accounts.
-
Whenever possible, lock or disable these accounts to prevent misuse.