Appendix 1: An Inventory of Campus Identifiers
What are the primary identifiers used in electronic environments on campus? What are their primary uses?
Eg userid, social security number, netware login, email address.
For each of the primary identifiers, consider the following:
A. Scope of each identifier
|
Who issues the identifier? |
|
|
What populations are able to get an ID? |
|
|
What are the sets of resources that the identifier is used for? |
|
|
Do you assign IDs to things other than people, such as objects and groups? |
|
|
Do you have a policy of "one person, one ID"? If so, how do you ensure this? |
B. Operational issues
|
Are IDs ever reassigned? |
|
|
What identifiers are the keywords for directory accesses? |
|
|
Are IDs chosen by users or auto-generated? |
|
|
What proof does a real-world subject need to establish an ID? |
|
|
Can users change IDs? Under what circumstances? |
C. Interrelationships among identifiers
|
Do you have policy about use of the central ID/authn system by |
|
|
applications, eg, central admin systems must use these IDs? |
|
|
Do you have a policy restricting the use of central ID/authn system by departmental or personal servers? |
|
|
Do you sync IDs among several authentication systems? |
|
|
(eg Kerberos, NT, Netware) |
|
|
Do all students/employees get an ID as part of entering the |
|
|
institution? |
|
|
What identifiers can be used to acquire other identifiers? |