After migrating around 300 accounts from cPanel recently, we found a few things which really need some consideration for the admin user.
First, password complexity. It's fine that it is enforced for users, but the admin should be able to ignore that. Having had to set MANY passwords again due to the different format from cPanel, having to do this via command line in config files is really not what we'd expect. There has to be some trust that the admin is doing something that they consider acceptable.
A second point in that is we should be able to chose the level of complexity. This should not be hard set and dictated by the platform for us.
Secondly, the list of prohibited domains should not be enforced to the admin user, again for similar reasons. The admin should be able to do what they want but the list should be there to stop users trying to or doing naughty things.
Essentially, the "super admin" should be able to do anything without restrictive control that should only be applied to users.
