Re: Remote Access Policies

["Di Fabio, Andrea" <adifabio () NSU EDU>]

Faculty and Staff may request a VPN account through their supervisor.  VPN
only allows the Faculty/Staff to Remote Desktop into their office PC on
Faculty/Staff VLAN only.  By using RDP only, we can limit the spread of
malicious code.  In addition, the end users have the same experience they
would, if they were sitting at their office.  We limit the concurrent VPN
sessions to avoid and/or detect account sharing as well as set a mandatory
connection timeout.

IT staff rules are a bit more lax and allow ssh into network equipment as
well as other types of access for troubleshooting issues that could arise
when individual office machines are down.

We also offer SSL VPN.  For Faculty/Staff we provide a portal with a Java
RDP client.  IT Staff can take advantage of the SSL client which provides
wider connectivity options.

Hope this helps.

-----Original Message-----
From: The EDUCAUSE Security Constituent Group Listserv
[mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Todd Bossaller
Sent: Monday, July 14, 2008 7:59 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Remote Access Policies

Does anyone have any policies or rules they would be willing to share for
remote access (VPN) to their instituion?  Are there any legal
policies/procedures I should be aware of?

Thank you,

Todd Bossaller
Systems Administrator
Missouri Valley College
500 E College St
Marshall, MO 65340
660.831.4088
bossallert () moval edu<mailto:bossallert () moval edu>
This document may contain confidential information and is intended solely
for the use of the addressee. If you received it in error, please contact
the sender at once and destroy the document. The document may contain
information subject to restrictions of the Family Educational Rights and
Privacy and the Gramm-Leach-Bliley Acts. Such information may not be
disclosed or used in any fashion outside the scope of the service for which
you are receiving the information

Attachment: smime.p7s
Description: