higher education "best practices" for authenticating to campus IT resources

[Daniel Bennett <dbennett () PCT EDU>]

Hello All,

Currently, we are trying to answer the following questions to sort of benchmark higher education "best practices" for 
authenticating to campus IT resources:

1.      Does your institution provide separate usernames and passwords for critical and non-critical information 
systems (multiple authentication systems)? An example, the Director of Financial Operations uses one username and 
password to log into his/her Windows-based workstation, campus e-mail,  or campus portal and another different username 
and password to log into the campus financial system.

If no, to the above question:

2.      Does your authentication system also provide single sign-on to all campus information systems?  An example, the 
Director of Financial Operations logs into his/her workstation and once logged in he/she can access all other campus 
applications without providing the username/password again, through some sort of single sign-in infrastructure.

Thanks,

Daniel Bennett
IT Security Analyst
Pennsylvania College of Technology
One College Ave
Williamsport PA, 17701
570.329.4989