Re: Open Access Workstation

["Miller, Don C." <donm () UIDAHO EDU>]

Eme, we have a formal written policy for the University of Idaho
requiring authentication, and individual accountability, for all campus
resources.  For long term access we create accounts sponsored by a full
time employee with information about the account owner.  For temporary
access for many users we have pre-created guest accounts and we require
a department to maintain a one-to-one log of the account use.  For areas
which are required to provide "public" access we have a locked-down
shared password account which is given out by a manned information desk
in the area.

Don Miller
University of Idaho

-----Original Message-----
From: The EDUCAUSE Security Constituent Group Listserv
[mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Eme Ejike
Sent: Monday, April 12, 2010 9:27 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Open Access Workstation

We are currently evaluating issues of open workstation on Campus. 
Certain departments have computers with Open/Generic logons in labs,
lobbies and tutoring centers which prevents us form accurately tracking
users if an incident were to occur using these systems. I am trying to
get a general consensus on how the University body overall handles such
systems. Given our roles of balancing our security and educational
needs, what measures are currently implemented for such systems in your
institution. Are there any policies that enforce computing resource
lockdowns irregardless of the educational service needs ?  Proposing IT
policies normally generates a lot of flack when dealing with educational
services. Furthermore does any campus enforce individual logons and
Desktop logoff due to inactivity on open workstations.
Responses appreciated,


Eme Ejike
University Systems Security Officer
ODU