Educause Security Discussion mailing list archives

Re: Locally Administered servers

From: "Waller, Michael A. (HSC)" <Michael-Waller () OUHSC EDU>
Date: Tue, 14 Mar 2006 08:55:58 -0600

This lines up pretty well with what we do here at the University of
Oklahoma Health Sciences Center. There are servers maintained by
departments all over campus, but we've worked hard to consolidate as
much PHI and other sensitive data as possible in a centralized data
center.

Mike Waller   CISSP
Information Technology, Information Security Services
The University of Oklahoma Health Sciences Center

-----Original Message-----
From: Thomas R. Davis [mailto:tdavis () IU EDU] 
Sent: Tuesday, March 14, 2006 8:18 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Locally Administered servers

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Mar 13, 2006, at 12:57 PM, Leo Tran wrote:

Does your University allow local departments to administer their  
own servers?  Do you require them to sign any kind of release  
form?  Do you have any specific security policy for them?


Hi Leo,

I think you'll find that this varies based on the institution's  
size.  Most larger institutions will have many departments  
administering their own servers, whereas some of the smaller  
institutions will have more central control.

Indiana University is an eight campus system.  On our two largest  
campuses (Bloomington and Indianapolis), it is standard practice for  
departments to administer their own servers with the central IT  
departments running enterprise wide services such as email, DNS,  
administrative systems, etc..  No release forms are required.  On our  
other smaller campuses, IT is managed by the central IT departments.   
All administrators are subject to our University wide IT policies:   
http://www.itpo.iu.edu/

Hope this helps,

- -- 
Tom Davis, IT Security Officer, CISSP, CISM, GCIA
Office of the VP for Information Technology, Indiana University
PGP key or S/MIME certificate: https://itso.iu.edu/Tom_Davis


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (Darwin)

iD8DBQFEFtCIcxDtdAa0EQ0RAoxdAJ9M0nPvne0Sspti37/wSQ0hd+KJWwCfV0bk
9k4hD1atad3sv1y4lE5gOro=
=ZoqA
-----END PGP SIGNATURE-----

Current thread:

Locally Administered servers Leo Tran (Mar 13)
- <Possible follow-ups>
- Re: Locally Administered servers Kenneth G. Arnold (Mar 13)
- Re: Locally Administered servers David Lundy (Mar 13)
- Re: Locally Administered servers Cal Frye (Mar 13)
- Re: Locally Administered servers Bob Kehr (Mar 13)
- Re: Locally Administered servers Thomas R. Davis (Mar 14)
- Re: Locally Administered servers Waller, Michael A. (HSC) (Mar 14)
- Re: Locally Administered servers Gary Flynn (Mar 14)