Standards Group:
YALE-MSS-9: Authentication and Authorization
YALE-MSS-9.6: Use University approved authentication methods
Low Risk Endpoint
Not Required
Moderate Risk Endpoint
Not Required
High Risk Endpoint
Not Required
Low Risk Server
Required
Moderate Risk Server
Required
High Risk Server
Required
Low Risk Mobile Device
Not Required
Moderate Risk Mobile Device
Not Required
High Risk Mobile Device
Not Required
Low Risk Network Printer
Not Required
Moderate Risk Network Printer
Not Required
High Risk Network Printer
Not Required
Details
When an IT system uses Yale's SSO, the authentication activity is handled by Yale. This ensures that multi-factor authentication (MFA) and other important features are enforced when someone logs into the system.
Whenever feasible, use the University's Single Sign-On (SSO) capability. LDAP is not approved for web services.
For more information on SSO options, contact the Identity and Access Management team.