YALE-MSS-9.7: Use University approved authentication methods

Standards Group:
YALE-MSS-9: Authentication and Authorization

Low Risk Endpoint Not Required Moderate Risk Endpoint Not Required High Risk Endpoint Not Required Low Risk Server Required Moderate Risk Server Required High Risk Server Required Low Risk Mobile Device Not Required Moderate Risk Mobile Device Not Required High Risk Mobile Device Not Required Low Risk Network Printer Not Required Moderate Risk Network Printer Not Required High Risk Network Printer Not Required

Details

Reason for the standard

When you are using Yale NetID credentials, no piece of technology is allowed to see NetID passwords except the University Single Sign On (SSO) method. This is because the NetID gives access to more than just the IT System using the NetID credentials for authentication.

Controls

YALE-MSS-9.7.1: Web applications are required to use Yale credentials to utilize the University's Approved Single Sign On methods
YALE-MSS-9.7.2: For non-web applications, use Yale’s central Active Directory services. LDAP is not approved.

YALE-MSS-9.7: Use University approved authentication methods

Standards Group:YALE-MSS-9: Authentication and Authorization

Details

Controls

Standards Group:
YALE-MSS-9: Authentication and Authorization