Computer Services Access Security
Network Services Account Information
This web page to provides information regarding the Network Services section of the security document sent regularly via Email to those individuals responsible for review access security. This includes an explanation, example listing, definitions, and action recommendations.
The Network Services Accounts listed in the document you received were linked to you in one of two ways:
- Department -- thru searching multiple computer and database systems such as CWIS, Human Resources, and Computer User Tracking System, each account is linked to a group or department. If you received this type of security document then you have been identified as the main contact for this group or department.
- Responsible Account Holder -- some non-student computer accounts are created without any record within the HR system. Other special departmental accounts are also created as needed. When this occurs an existing computer account holder, usually a permanent full-time employee of the university, is identified as responsible for the account. If you received this type of security document then this indicates that you have been designated as the responsible account holder for the accounts listed in the document.
You may find an account in the list for someone who no longer works for your department but may continue to work for the university in another department. Please read the When to Take Action section below to determine when concern/contact is warranted.
For department related security documents the Network Group is found labeled as "Group:". In the example found below the group name is ACCOUNT as seen in the label (Group: ACCOUNT).
|Network Services Section|
|Login Account||Name||Expires||Last Access||*Services|
|doejane||Doe, Jane||No||Not Used||C+|
|smitjohn||Smith, John M||12/01/07||7/31/05||C+,T+,M,R|
|The string of characters or numbers (normally 8 or less) utilized to login to various computer services. In the example above doejane, smitjohn and browbill are the network account entries.|
|The full name identified with this network account.|
|The date listed indicates when one or more of the network services for the account will expire and be disabled.
In the example above the first and last accounts, doejane and browbill, have no expiration date set. The second account,
smitjohn, expires December 1st, 2004.
The account holder and responsible account holder, if applicable, will receive an Email at both 30 days and 15 days prior to the disable of the account.
Please note: all network services may NOT expire on the same day -- the date shown is the closest.
|Dates are available to indicate when a service or computer was last accessed. This date shows the most recent access
date from all Services listed for the account. In the example above the first
account has not been accessed according to our records and, consequently, Not Used
is listed. The second and third accounts were last accessed July 31st, 2002.
(Note: Last Access Dates for CWIS[C], TAS[T], and Remote/Modem Access[R] have been collected since the summer of 2000. FS Tools[F] access dates were first collected in the summer of 2002. Email[M] access dates were first collected in October 2003. We are currently unable to collect the Last Access Date for the Calendar[L] service.)
|This column attempts to identify the computer services and/or systems the network account can access. They are
identified with one character codes. The possible computer services are as follows:
When to Take Action
If any one of the following situations listed below exist please contact the ISU Helpdesk to have them correct the access. Sending an Email to the ISU Helpdesk, noting changes, is the preferred method of contact. If the situation is considered critical please contact the ISU Helpdesk by phone at 282-HELP.
- If a person has left the employment of the university.
- If a person has transferred to another department within the university and is listed as having Shared (+) access. Please identify the new department, if possible.
- If an account has unnecessary access to one of the computer services defined above. This may occur when a departmental, generic, or work study type account has FS Tools, Email, Remote Access services enabled when these services are not essential to the job.
- If an account requires additional access to one of the computer services defined above.
- If a person's name has changed.
- If the account is about to expire but needs to be extended.
- If an account has not been accessed for six months or more.
In this situation the account should probably be disabled as the account holder probably has no current requirement for a computer account. A new account could be created in the future as needs change by simply contacting the ISU Helpdesk.
Thank you very much for your assistance.