| ||||||||
| ||||||||
|
CSAR Password PolicyPasswords are the entry point to the CSAR resources. Creating strong passwords and protecting access to CSAR resources is pivotal in ensuring that the CSAR service remains secure. As such, all CSAR personnel and users who have to access the service are responsible for taking appropriate steps to create and protect their passwords. RequirementsWeak and non-compliant passwords are a major vulnerability in any computer system and are the most commonly exploited security feature. To protect the CSAR service a strong password must be used. The following guidelines should be adhered to. Password Rules and Format
Password Expiry and Account LockoutsPasswords will need to be changed regularly on all CSAR systems. They will be setup with the following characteristics:
Password history will be implemented where possible. Expired passwords will need to be updated within 60 days of the expiry date. Failure to revalidate an expired password within 60 days will automatically render the account ‘locked out’. Locked out accounts will need authorisation by the PI before revalidation can take place. Contact the CSAR Help Desk for help with any of the above access problems. Password Protection
Password ProtectionPeriodically, passwords may be randomly tested by CSC security or administration staff using password cracking/guessing tools. If a password is guessed or cracked during the scan, the user will be required to change it immediately, and the PI will be notified. If the user fails to change the password within two (2) working days, the account will be locked and not unlocked without a request to do so by the PI. |
|||||||
Page maintained by csar-advice@cfs.ac.uk This page last updated: Thursday, 26-Jan-2006 14:44:27 GMT |