The Administrative Access Policy defines under what circumstances and to what extent administrative access rights are granted to non-support personnel so that they can successfully perform their Pratt-related computing activities.
The Administrative Access Policy defines under what circumstances and to what extent administrative access rights are granted to non-support personnel so that they can successfully perform their Pratt-related computing activities. Pratt is committed to providing reliable technology in a stable computing environment while maintaining data security and preventing the violation of software copyright laws; this policy supports that commitment.
The granting of enhanced access rights will be in accordance with the existing Computer and Network Responsible Use Policy. As outlined in that policy, Pratt reserves the right to limit access to its networks or computers in the event of violations of institutional policies or codes, or of state or federal laws.
By default, users of Pratt-owned laptops have standard user-access levels which provide the ability to create, edit or delete any end-user data as well as a limited amount of interface customization such as creating shortcuts and changing the look of the display. This policy will establish exemptions to the default settings and may permit an end-user to install software, printers and other peripherals.
It will also provide users the ability to change security settings, alter user accounts, change file-level permissions and modify the operating system. Any of these activities may make the computer unstable or damage the operating system.
These exemptions may be granted to faculty and staff members who require an administrative level of access on a Pratt-owned laptop to perform job-related tasks.
Written justification is required to grant administrative access rights. Requests must contain an explanation including specific job-related or academic tasks that aren’t possible to achieve without administrative access. The requests should be sent via email to the Service Desk at firstname.lastname@example.org. The request will then need to be reviewed and approved by the requester’s division head before implementation.
- All laptops covered under this policy are Pratt property and are intended for Institute business or academic use.
- Only software and peripherals related to Pratt business and academic activities will be installed.
- No software that alters the base operating system or exposes the computer to viruses, worms or other malware will be installed.
- No software will be installed that uses excessive network resources or adversely affects any other computer.
- No software will be installed that establishes network shares which either result in an increase in bandwidth utilization or has the potential to create security problems.
- No software will be downloaded or installed which is illegal or violates copyright.
- Any commercial software, other than those included in the default Pratt configuration, must have appropriate licensing documentation. Software in this category will not be supported by the Pratt Service Desk and will be removed during normal repair processes if necessary to restore system functionality.
- Full administrative and remote access will be preserved for the IT Service Desk.
- For security purposes, the software-based tracking system Computrace and Sophos Anti-Virus will be preserved.
- All laptops will be configured to use Pratt\’s Active Directory domain.
- At least once every six-months all systems covered under this policy will be attached to the Pratt network to be registered through network services and have anti-virus software updated.
REVOCATION OF ADMINISTRATIVE RIGHTS
Repeated occurrences of problems with the operating system or system security or any activities that violate this policy may result in the revocation of administrator level access.