Desktop Machines - A&S Security Policy

• All computers connected to the A&S Network will be administered by trained systems administrators/IT professionals.

• By default, root access/administrative rights on all computers will be assigned to an A&S systems administrator/IT professional.

• Users may receive administrative rights to their computer by reading through the materials provided on the Administrative Access Certification site, and submitting the associated request form The process is meant to ensure that:
  • Users become educated in and demonstrate competency on relevant issues.
  • Users take responsibility for following standard procedures and guidelines associated with sudo access/administrative rights.
  • Users follow standard written procedures for documenting the payment of any licensed software they install.

• Computers will be administered in accordance with standard configurations prioritized and approved at the departmental level.

• Notwithstanding departmental priorities, all computers will conform to the following:
  • remote management software will be installed to facilitate administration, software upgrades and troubleshooting;
  • active, properly configured anti-virus software will be installed;
  • service packs or patches will be installed on a regular basis as deemed necessary by A&S IT Security systems administrators.

• Network monitoring and intrusion detection will be performed on all nodes as necessary and appropriate by designated University systems administrators.

• Users are encouraged to log out when they leave their desks, or at least at the end of the day.

• Users are asked to follow safe and appropriate computer use practices, in accordance with the Duke University OIT Security Policy Statements and their departmental computer system user policies where they exist.