diff --git a/.github/workflows/root-ci-config/build_root.py b/.github/workflows/root-ci-config/build_root.py
index eb9f12eed2901997a619c564e4cee5bc541d3b10..fde5a2f8044b26843c1eba0a2594e6afd1e43347 100755
--- a/.github/workflows/root-ci-config/build_root.py
+++ b/.github/workflows/root-ci-config/build_root.py
@@ -21,7 +21,6 @@ import tarfile
 from hashlib import sha1
 
 import openstack
-import ctypes
 
 from build_utils import (
     cmake_options_from_dict,
@@ -51,14 +50,6 @@ COMPRESSIONLEVEL = 6 if not WINDOWS else 1
 def main():
     # openstack.enable_logging(debug=True)
 
-    try:
-        sudo = (os.getuid() == 0)
-    except AttributeError:
-        sudo = ctypes.windll.shell32.IsUserAnAdmin() != 0
-    
-    if sudo:
-        die(os.EX_USAGE, "Script should not be run with sudo/admin")
-
     # accumulates commands executed so they can be displayed as a script on build failure
     shell_log = ""
 
diff --git a/.github/workflows/root-ci.yml b/.github/workflows/root-ci.yml
index 725395484e24e6ec1f7caa2be919e67921cd704a..2a28cc537330e011640cad611cb0f32ddff96330 100644
--- a/.github/workflows/root-ci.yml
+++ b/.github/workflows/root-ci.yml
@@ -255,7 +255,7 @@ jobs:
 
     container:
       image: registry.cern.ch/root-ci/${{ matrix.image }}:buildready
-      options: '--security-opt label=disable --rm --userns=keep-id'
+      options: '--security-opt label=disable --rm'
       env:
         OS_APPLICATION_CREDENTIAL_ID: '7f5b64a265244623a3a933308569bdba'
         OS_APPLICATION_CREDENTIAL_SECRET: ${{ secrets.OS_APPLICATION_CREDENTIAL_SECRET }}