Re: Locking Computer Policy

[Ronald Loneker <rloneker () CSE EDU>]

Hi Denis,

Sorry for the delay in responding - it's the end of the semester and I'm
busy with preparations for Commencement among my other responsibilities.

This is very helpful - thanks a lot!

That seems like a good compromise for classroom computers - I'm always
thinking about how faculty may put things up on a screen and walk and
interact for a while.

Ron
-----------------------------------
Ron Loneker, Jr.
Director, IT Special Projects
College of Saint Elizabeth
Mahoney Library
2 Convent Road
Morristown, NJ  07960

Phone:  973-290-4229

e-mail:  rloneker () cse edu



*CSE's IT department will never ask for your password, social security
number or other personal information in an e-mail message.*
*Please do not share any information with others!*






On Thu, May 2, 2019 at 9:48 AM Burns, Denis <denis.burns () med fsu edu> wrote:

> Hi Ron,
>
>
>
> We push policy to all domain machines with inactivity timers set to:
>
> a)       15 minutes for all standard machines issued to users
>
> b)      30 minutes for classroom and conference room computers
>
>
>
> We also have an exception process that allows certain machines to not have
> these policies applied (digital signage, security camera monitoring
> stations, etc).
>
>
>
> Additionally, as of Windows 10, we have removed admin privileges from all
> accounts used for interactive sessions.  This inhibits our folks from
> installing ‘mouse wiggler’ applications to circumvent the policy.
>
>
>
> Best,
>
> -d
>
>
>
> PS – Great area that you live in.  I grew up next door in Denville.
>
>
>
> Denis Burns Information Security and Privacy Officer - College of Medicine
> - Florida State University
>
> (850) 644-3648 – denis.burns () med fsu edu  *** Be a cyberhero! Build a
> safe cyberspace at Florida State. ***
>
>
>
> *From:* The EDUCAUSE Security Community Group Listserv <
> SECURITY () LISTSERV EDUCAUSE EDU> *On Behalf Of *Ronald Loneker
> *Sent:* Wednesday, May 1, 2019 6:44 PM
> *To:* SECURITY () LISTSERV EDUCAUSE EDU
> *Subject:* [SECURITY] Locking Computer Policy
>
>
>
> [Notice: This email originated outside of the College of Medicine.]
> ------------------------------
>
> Hi Everyone -
>
>
>
> We looking to set up a group policy to push out to some of our end users
> to automatically lock a computer after a certain period of inactivity -
> especially in departments that have elevated privileges or access to
> sensitive data.
>
>
>
> We are noticing some people not following procedure on this, and we want
> to take action.
>
>
>
> What best practices are you using at your institution in terms of the
> amount of time before a computer locks automatically during inactivity?
>
>
>
> Thanks in advance for your thoughts on this.
>
>
> Ron Loneker, Jr.
> Director, IT Special Projects
> College of Saint Elizabeth
> Mahoney Library
> 2 Convent Road
> Morristown, NJ  07960
>
> Phone:  973-290-4229
>
> e-mail:  rloneker () cse edu
>
>
>
> *CSE's IT department will never ask for your password, social security
> number or other personal information in an e-mail message. *
> *Please do not share any information with others!*