Re: Outsourcing Student Email - Security Concerns?

[Walter Moore <moorewr () ECKERD EDU>]

There have been some fairly public debates about this, notably at Yale.
http://www.yaledailynews.com/news/2010/mar/30/its-delays-switch-to-gmail/

Our discussion centered on the Google Apps SLA, but in the end our General
Counsel felt was acceptable. We ended up using a password sync process
instead of SSO, but you could opt to run a SAML server. In that scenario
your AD password would not be stored or synced to Google Apps.

Be aware that users will, in that scenario, need to set a separate password
for external IMAP/SMTP clients (phones etc).

On Thu, May 26, 2011 at 11:04 AM, Allen Wood <awood () hillcollege edu> wrote:

>  Hello all,
>
>
>
> I work for a small community college and we’re currently running Exchange
> 2010 for student email.  Our VP likes the idea of using Google Apps for
> Education (or Microsoft’s Live@edu) and freeing up that mail server for
> something else.  I am leery of making the move and basically putting the
> student’s Active Directory accounts in someone else’s hands. I would think
> there are also possible compliance issues, but I haven’t really studied that
> side of it yet.
>
>
>
> Have any of you ever made either side of this argument before?  If so,
> would you mind sharing any info that you may have available that may help us
> decide outsourced vs. locally hosted, and maybe even Google vs. Microsoft?
>
>
>
> Thanks in advance for any info-
>
>
>
> Allen Wood



-- 
+-----------------------------------------------------------------+
Walter R. Moore --  Sr. Systems Administrator, Eckerd College
moorewr () eckerd edu --  http://home.eckerd.edu/~moorewr

"It was glorious to see -- if your heart were iron,
And you could keep from grieving at all the pain" - The Iliad (13.355)

I'm on twitter: http://twitter.com/moorewreckerd

***Reminder! ITS will never ask you to e-mail your password!***