Some Resources Currently Unavailable- Change My Password?
- Get Through Clean Access?
- Get My Username & Password?
- Hook Up My Computer in my Room?
- Get A Job With ITS?
- Get Microsoft Software for Home (Faculty/Staff)?
- Get Microsoft Software for Home (Students)?
- Check My Student Printing Balance?
- Add Money to My Student Printing Account?
- Connect to Cable TV?
- Verify My Network Is Working?
- Setup My Network Drives?
- Setup My Wireless on my Laptop?
- Protect Myself from SPAM?
- Configure Barracuda SPAM Filter to Allow/Disallow Email?
Password Management
I. Need for Policy
Passwords are an important aspect of computer security. They are the front line of protection for user accounts. A poorly chosen password may result in the compromise of network resources. As such, all TRUMAN network users (including contractors and vendors with access to TRUMAN systems) are responsible for taking the appropriate steps, as outlined below, to select and secure their passwords.
II. Definitions
ITS – Information Technology Services
ITAC – Information Technology Services Advisory Committee
III. Statement of Policy
- All system-level passwords (e.g., root, enable, NT domain admin, application administration accounts, etc.) must be changed at least every 90 days.
- All user-level passwords (e.g., NT domain, email, web, desktop computer, etc.) must be changed at least every 180 days. The recommended change interval is every 90 days.
- User accounts may not have system-level privileges with the exception of those users that have administrative privileges on their own workstations.
- Users that can justify system level access must request a separate admin account giving them specific system-level permissions for their applicable areas. Exceptions must be approved in writing by ITS.
- Passwords should not be inserted into non-encrypted email messages or other forms of non-encrypted electronic communication.
- Do not use the same password for TRUMAN accounts as for other non- TRUMAN access (e.g. personal ISP account, option trading, benefits, etc.).
- Where possible, do not use the same password for different TRUMAN accounts.
- Do not share TRUMAN passwords with anyone, including administrative assistants or secretaries. All passwords are to be treated as sensitive, confidential TRUMAN information.
IV. Exceptions
Any exceptions to this Policy must be approved in writing by ITS.
V. Enforcement
If security is breached as a result of the violations of this policy, the person guilty of such violation may be subject to disciplinary action, up to and including termination of employment.
VI. Attachments
None.
VII. Approvals
Approved by: ITAC on Dec 15, 2003