Educause Security Discussion mailing list archives

Re: Emeritus faculty privileges question


From: Mark Reboli <mreboli () MISERICORDIA EDU>
Date: Fri, 10 Jul 2020 19:02:58 +0000

Please see below.  Our Academic definition of emeritus is "faculty for life".  These individuals are therefore kept as 
faculty.  I was able though to get a rule that basically states if they do not utilize the access for any 6 consecutive 
months, they are terminated and accounts are set to disable/deletion in 60 days thereafter. The good news on these 
accounts is they are extremely far and few.  We also make them follow normal password resets and other policies.  Most 
likely the decision will be made prior to you getting a chance to weight in.  I was able to get a piece as part of the 
implementation process.



M
Mark Reboli
Network/Telecom/IT Security Manager
Misericordia University
(570) 674-6753

This e-mail and accompanying attachments are confidential.  The information is intended solely for the use of the 
individual to whom it is addressed. Any review, disclosure, copying, distribution, or use of this e-mail communication 
by others is strictly prohibited. If you are not the intended recipient, please notify us immediately by returning this 
message to the sender and delete all copies. Thank you for your cooperation.


From: The EDUCAUSE Security Community Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Davidson, 
Charles
Sent: Friday, July 10, 2020 12:26 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Emeritus faculty privileges question

External Email: Do not click any links or open any attachments unless you trust the sender and know the content is safe.
Hello,

Recently retirement packages for our faculty were sweetened by offering Emeritus Faculty status. Emeritus faculty are 
provided the same access to their data and equipment as if they were still working for our institution. This is causing 
our IT to have to rethink security, support, access and privileges for these users. How is your organization dealing 
with the following concerns and how you are mitigating the risks involved?

  *   Are your Emeritus faculty allowed to keep their laptops and desktops? No
  *   If this equipment is allow to be kept, are they removed from your institution's AD domain?
  *   Are you reimaging these devices and removing them from your institution's AD domain?
  *   What level of support and software are you offering? basic
  *   Are you allowing the Emeritus faculty access to their home directories? yes
  *   Are you allowing the Emeritus faculty access to department directories? yes
  *   Are you allowing the Emeritus faculty access to research directories? yes
  *   Are you allowing the Emeritus faculty access to their email, etc? yes
Answering any or all of the above questions would great help in our planning. We are very interested in hearing if 
anyone has found a good solution.

Thanks,
Charlie

Charles Davidson, CISSP
Information Security Engineer
p: (508) 831-6250

[1518278940442_worcester-polytechnic-institute_2014-06-05_14-10-50.981.png]

Worcester Polytechnic Institute * Information Technology

**********
Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the 
person who sent the message, copy and paste their email address and forward the email reply. Additional participation 
and subscription information can be found at https://www.educause.edu/community

**********
Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the 
person who sent the message, copy and paste their email address and forward the email reply. Additional participation 
and subscription information can be found at https://www.educause.edu/community


Current thread: