Account Management Policy

Purpose

This policy specifies that individuals affiliated with Sacred Heart University and providers of Sacred Heart electronic services must use designated network credentials issued by the University for accessing enterprise electronic systems. This policy promotes security, accountability, and proper levels of confidentiality in the assignment, use, and deactivation of these personal credentials. 

Policy

Sacred Heart uses an Identification (ID) number to represent students, faculty, staff, alumni, as well as other affiliates of the University. Each respective student, faculty, staff or affiliate is assigned and provided an ID number. This ID number is then used to generate the network credentials which provide login access to enterprise electronic services. Additionally, in combination with a second factor of authentication, network credentials position both centrally and locally managed services to authenticate individuals reliably and securely. One and only one ID number (as well as its corresponding network account) is provided to an individual at the time the individual initially assumes or resumes a relationship with the University. The ID number and paired network account remain the property of Sacred Heart. Sacred Heart reserves the right to change, delete or add ID numbers as well as the corresponding network accounts.

Network credentials typically consist of a character string identifier - a username and password - plus one or more authentication factors.

Scope of Policy

This policy applies to the Sacred Heart ID number and paired network account as the primary credential set for authentication to University electronic services.

Policy Effective Date

10/7/2020

Last Revision Date

10/7/2020

Policy Owner

William G. Mumper
Chief Information Security Officer

Policy Author (Contact Person)

Keshawa Fernando
Director of Information Security

Affected Parties

  • Faculty/Staff/Adjunct
  • Undergraduate/Graduate/Alumni

Standard/Procedures

See University Standard for Account Management.

Definitions

Authentication factors: Authentication factors are elements used in confirming digital credentials through the process of verifying a person’s identity. Examples of authentication factors include but are not limited to a push to an app on the person’s mobile device, calls to a landline or mobile device, or SMS text – all which pertain to something “the user has” which are in addition to the name and password, “something the user knows.”

Network credentials: Network credentials provide a means to link an asserted identity in the electronic process to data used to verify a person’s identity.

Approval & Revisions

Approved by the Director of Information Security and Infrastructure.

Sacred Heart University, Incorporated

  • Revision 1  10/7/2020