Information Security

User Account Management Standard

Last modified 9/24/2020

User accounts, in combination with a password, provide individuals with a resource to access University systems and data. These user accounts allow for the individual to be identified so that they can access what they need, when they need it.

Standard

All University user accounts must be managed in the central account management system.

Additional Information

The following items are to provide context or better understanding of this standard:

  • Non-User Accounts

There are non-user types of accounts that support the operations of University systems and services. The most common example of this is often referred to as a "service" account. These accounts and configured within systems themselves and are not directly used by individuals. A separate standard is under development for such accounts.

  • Requesting an Exemption

In the event that this standard cannot be met, an exemption can be requested and will be evaluated on a case-by-case basis.

All exemptions will require documentation of the user account, how it is managed, what it has access to, the reason the standard cannot be met, and then executive approval determined by the area requesting and based on the documented risks.

  • System Defined

The current central account management system is Oracle Identity Manager (OIM). OIM provisions user accounts and more to the University directory systems which are then used by other systems and services.