Re: Is anyone forcing active sync controls on their smart phone users?

["Patria, Patricia" <PPatria () BENTLEY EDU>]

We push controls to both university owned and personally owned devices, including passwords, timeouts and limits to 
e-mail. University owned devices are Blackberries, but people can connect via ActiveSync for other devices if they 
agree to the policy.

The full policy  can be viewed at http://info-privacy.bentley.edu/policy/handheld-device-policy.

Patty


Patty Patria
Chief Information Security Administrator | Bentley University
175 Forest Street, Waltham, MA 02452 |781.891.2364



From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of John 
Rasmussen
Sent: Thursday, April 22, 2010 5:32 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Is anyone forcing active sync controls on their smart phone users?

We are currently considering our options for securing information on smartphones that include iPhones.

Is anyone using the Active Sync controls in Exchange to push security controls to these devices?
Some controls would include an automated timeout, required pin or password, and enabling remote wipe for lost or stolen 
devices.

Are these controls applied to all university owned devices ?  Do controls apply to personally owned devices?

We are an academic medical center but I am very interested to find out what other colleges and universities are doing.
Thanks
John

John Rasmussen
Information Security Officer & Associate Privacy Officer
OHSU Integrity Office
4-8480