{"id":14892,"date":"2022-09-21T13:38:39","date_gmt":"2022-09-21T18:38:39","guid":{"rendered":"https:\/\/www.mcneese.edu\/policy\/?post_type=ie_policy&#038;p=14892"},"modified":"2023-02-02T10:02:57","modified_gmt":"2023-02-02T16:02:57","slug":"information-technology-identity-and-access-management-policy","status":"publish","type":"ie_policy","link":"https:\/\/www.mcneese.edu\/policy\/information-technology-identity-and-access-management-policy\/","title":{"rendered":"Information Technology Identity and Access Management Policy"},"content":{"rendered":"\n<h2 class=\"display-3 wp-block-heading\">Purpose<\/h2>\n\n\n\n<p>The purpose of this policy is to establish the rules that govern the issuance and maintenance of the digital identities at McNeese State University.<\/p>\n\n\n\n<h2 class=\"display-3 wp-block-heading\">Scope<\/h2>\n\n\n\n<p>This policy applies to all McNeese State University employees, students, and individuals authorized to access University services and facilities.<\/p>\n\n\n\n<h2 class=\"display-3 wp-block-heading\">Definitions<\/h2>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Identity Management<\/strong>: The creation and maintenance of the unique University account that distinguishes one individual from another as well as confirmation of the account owner\u2019s identity.<\/li>\n\n\n\n<li><strong>Access Management<\/strong>: The assurance that only authorized University account owners are granted access to use University information systems.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"display-3 wp-block-heading\">Policy<\/h2>\n\n\n\n<p>The Office of Information Technology is responsible for establishing processes and procedures that enable secure, centralized access to University information systems.<\/p>\n\n\n\n<h3 class=\"display-4 heavy wp-block-heading\">Identity Management<\/h3>\n\n\n\n<p>All University accounts will be comprised of a unique ID number, McNeese login, and email address. Accounts will be created for individuals within the following categories:<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>Students<\/strong>: Students admitted, enrolled, and attending the University; inherently included in this category are former students that have graduated or left the University.<\/li>\n\n\n\n<li><strong>Employees<\/strong>: Employees with a full or part-time appointment.<\/li>\n\n\n\n<li><strong>Authorized Individuals<\/strong>: Other individuals (e.g., vendors, courtesy assignments) who are authorized to be onsite, unescorted, and to use University services and facilities.<\/li>\n<\/ol>\n\n\n\n<h3 class=\"display-4 heavy wp-block-heading\">Access Management<\/h3>\n\n\n\n<p>Authentication to a University information system constitutes an official identification of an individual to the University; therefore, the use of a McNeese login for authentication is required to access all University information systems. The Office of Information Technology will use the following access guidelines:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>The creation of local accounts and\/or use of authentication that does not use a McNeese login is prohibited.<\/li>\n\n\n\n<li>Multi-factor authentication is mandatory for all applicable services (e.g., VPN, email, etc.).<\/li>\n\n\n\n<li>Access to University information systems will be based on the principle of least privilege.<\/li>\n<\/ul>\n\n\n\n<h3 class=\"display-4 heavy wp-block-heading\">Account Owner Responsibilities<\/h3>\n\n\n\n<p>University account owners will be held accountable for the actions that occur within a University information system that has been authenticated using their McNeese login; therefore, University account owners are responsible for safeguarding their McNeese login, which includes but is not limited to:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Creating and using passwords that adhere to best practices;<\/li>\n\n\n\n<li>Changing a password immediately and notifying the Office of Information Technology when there is reason to believe a password has been improperly disclosed, accessed, or used by an unauthorized person;<\/li>\n\n\n\n<li>Not sharing a McNeese login with someone else to access a University information system;<\/li>\n\n\n\n<li>Not using someone else\u2019s McNeese login to authenticate to a University information system;<\/li>\n\n\n\n<li>Leaving McNeese login information in a location that can be readily obtained by another individual (e.g., writing a password on a note);<\/li>\n\n\n\n<li>Leaving a computer\/workstation without securing it (e.g., locking it, logging out); and<\/li>\n\n\n\n<li>Accessing data within a University information system that is not related to job responsibilities.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"display-3 wp-block-heading\">Policy Compliance<\/h2>\n\n\n\n<h3 class=\"display-4 heavy wp-block-heading\">Compliance Measurement<\/h3>\n\n\n\n<p>The Office of Information Technology will verify compliance to this policy through various methods, including but not limited to system monitoring, business tool reports, and internal and external audits.<\/p>\n\n\n\n<h3 class=\"display-4 heavy wp-block-heading\">Exceptions<\/h3>\n\n\n\n<p>Any exception to the policy must be approved by the Office of Information Technology in advance.<\/p>\n\n\n\n<h3 class=\"display-4 heavy wp-block-heading\">Non-Compliance<\/h3>\n\n\n\n<p>An employee found to have violated this policy may be subject to disciplinary action, up to and including termination of employment.<\/p>\n\n\n\n<p>Any student who violates this policy will be subject to appropriate disciplinary action in accordance with the <a href=\"https:\/\/www.mcneese.edu\/policy\/student-handbook\/\" data-type=\"ie_policy\" data-id=\"14559\">Student Handbook<\/a>.<\/p>\n\n\n\n<p>Any individual affiliated with the University who violates this policy will be subject to appropriate corrective action, including but not limited to termination of the individual\u2019s relationship with the University.<\/p>\n\n\n\n<h2 class=\"display-3 wp-block-heading\">Communication<\/h2>\n\n\n\n<p>This policy is distributed via the University Policies webpage.<\/p>\n","protected":false},"parent":0,"template":"","policy_types":[19],"class_list":["post-14892","ie_policy","type-ie_policy","status-publish","hentry","policy_types-institutional"],"acf":[],"_links":{"self":[{"href":"https:\/\/www.mcneese.edu\/policy\/wp-json\/wp\/v2\/ie_policy\/14892","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.mcneese.edu\/policy\/wp-json\/wp\/v2\/ie_policy"}],"about":[{"href":"https:\/\/www.mcneese.edu\/policy\/wp-json\/wp\/v2\/types\/ie_policy"}],"version-history":[{"count":3,"href":"https:\/\/www.mcneese.edu\/policy\/wp-json\/wp\/v2\/ie_policy\/14892\/revisions"}],"predecessor-version":[{"id":15118,"href":"https:\/\/www.mcneese.edu\/policy\/wp-json\/wp\/v2\/ie_policy\/14892\/revisions\/15118"}],"wp:attachment":[{"href":"https:\/\/www.mcneese.edu\/policy\/wp-json\/wp\/v2\/media?parent=14892"}],"wp:term":[{"taxonomy":"policy_types","embeddable":true,"href":"https:\/\/www.mcneese.edu\/policy\/wp-json\/wp\/v2\/policy_types?post=14892"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}