The article is quite right but a bit too "optimistic" Not going to happen soon, admin dept is usually the one with the less funding and priority, not saying some executives deliberately asking for "bypass" of the already in-place security strategy. I don't mention some admins that want all their scripts being able to run... And we knows the danger of allowing scripts to run...