My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
2021-04-26-minutes-it-study-session
>
Meetings
>
2021
>
05. May
>
2021-05-04 10:00 AM - Commissioners' Agenda
>
2021-04-26-minutes-it-study-session
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
4/29/2021 12:56:13 PM
Creation date
4/29/2021 12:54:27 PM
Metadata
Fields
Template:
Meeting
Date
5/4/2021
Meeting title
Commissioners' Agenda
Location
Commissioners' Auditorium
Address
205 West 5th Room 109 - Ellensburg
Meeting type
Regular
Meeting document type
Supporting documentation
Supplemental fields
Alpha Order
a
Item
Approve Minutes
Order
1
Placement
Consent Agenda
Row ID
75943
Type
Minutes
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
74
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
IT employees may share computer administrative,network administrative,and service <br />account passwords with other IT emplovees. <br />4.4.1.3 System and Hardware Default Passwords <br />IT shall ensure default administrative passwords are chanqed on all IT purchased devices <br />and software.(CJIS 5.9 §5.10.1.4(2)) <br />DHIEOs shall ensure default administrative passwords are chanqed on all department <br />purchased devices and software.(CJIS 5.9 §5.10.1.4(2)) <br />4.4.1.4 One-time Passwords <br />One-time passwords used as an authenticator shall: <br />•Be a minimum of six (6)randomly qenerated characters <br />•Be valid for a single session <br />•If not used,expire within a maximum of five (5)minutes after issuance (CJIS 5.9 § <br />5.6.2.1.3),however,new employee temporary account passwords will not expire and <br />must be changed by the employee at first login. <br />4.4.2 Shared accounts <br />Shared accounts are not allowed unless a strong business case is made,and the risks <br />accepted by the DHIEO.Shared accounts must be approved by the IT Director. <br />Shared accounts shall not be used to access Category [link 7.4.10]3 or 4 data.(CJlS 5.9 § <br />5.6.1) <br />4.4.3 Group membership <br />A group contains users who will receive email maßed--sent to the group (distribution list)or <br />have access to network resources (security group). <br />•One individual (or position)will be designated by the DHIEO as the owner of the <br />group. <br />•Access to group membership folders (security groups)must be requested of IT by <br />the DHIEO. <br />•Distribution list membership may be managed by the group owner. <br />4.4.4 Changes te--aGGountsAccess Control <br />•IT shall grant employees access to information systems based on least privileqes, <br />i.e.,the most restrictive set of rights/privileqes or access needed by employees to <br />perform assigned official duties. <br />DHIEOldesiqnee will communicate to IT requests for employee's access privileges <br />using the followinq systems,which will act as access privileqe chanqe loqs:HR-win- <br />o At hire,use the CAMAS Pre-orientation Checklist <br />15
The URL can be used to link to this page
Your browser does not support the video tag.