Implementation Information:
Version 1.0 created 11/15/98
Version 2.0 created 2/24/99 (incorporates comments from UCTC)

Overview

All internal campus computers with the exception of previously defined services are protected from outside network access by a firewall as described on the attached diagram.

All incoming network requests not known and defined on the firewall server are denied and are not passed through the firewall to the internal campus network.

The administrative server complex is hosted on a separate computer network. Access to that network is not allowed from off campus, computer labs or dialup networks as these networks are considered "unsecure".

Policy

1. Access to administrative systems

1.1. Requests to allow access to the administrative server complex from an "unsecure" network must be made via form C&T100 (attached).

1.2. This form must be signed by the requestor's dean or director along with their Banner functional area leader or equivalent (if applicable).

2. Access to desktop systems

2.1. Requests to allow access to desktop computers or department servers from off campus must be made via form C&T100 (in development).

2.2. This form must be signed by the requestor's department supervisor and dean or director.

3. Review and removal of access rules

3.1. Access rules will be removed when the requestor leaves the campus or changes departments.

3.2. Temporary access rules will be removed as specified the requesting form.

3.3. "Permanent" firewall access rules must be renewed on a yearly basis. Notices will be sent to requesters on the 15th of May each year. Rules not renewed will be removed on the 15th of June each year.

Associated documents:

Form C&T100 – Special Firewall Access Rule Request (word document)