From: Information Security <communicator@cortland.edu>
Sent: Thursday, March 9, 2023 10:32 AM
Subject: An update on computer administrative access
Dear Faculty and staff,
SUNY Cortland’s cyber insurance policy has necessitated a change in how Information Resources assigns administrative access on your computers starting the week of March 13. The university, however, has added a software solution that will result in very little disruption to your daily work.
To satisfy insurance regulations the university will adopt a policy of “least privilege,” which means users will only have administrative access when it is required. This will help prevent devices from being exploited by malware or hackers.
Temporary administrative access to install new applications or make other important changes to your computer system will be available on demand through software called Make Me Admin. New software purchases should continue to be requested through the online hardware/software request system (https://webapp.cortland.edu/HardwareSoftware) per the policy
You should know:
- Administrative access is a security level above the regular user access required for the routine operation of a computer. It allows users (and malware) to execute tasks that affect the system’s function, including installing software, modifying system settings, creating user accounts, and changing security settings.
- The model of “least privilege” dramatically reduces the risk of many common cybersecurity attacks and it is a requirement for compliance with several security regulations.
- Operating system updates installed supported software updates, and browser updates will continue to be distributed automatically as they are today. · Make Me Admin has already been installed on your device. Knowledge Base tutorials for Mac and PC users are available online: https://cortland.teamdynamix.com/TDClient/2298/Portal/Requests/ServiceDet?ID=52138_
This is a significant change in our operations but it is necessary for the security of the university’s network, data, and devices. If you run into problems or have feedback, please contact us via our service catalog: Local Administrator Rights for User Endpoints. (https://cortland.teamdynamix.com/TDClient/2298/Portal/Requests/ServiceDet?ID=52138)
Thank you,
Lisa Kahle (she, her, hers)
Associate Vice President
Chief Information Officer
607-753-5942
Josh Peluso ’00 (he, him, his)
Senior Director
Chief Information Security Officer
607-753-5617