Statement

Access to West Texas A&M University information resources is commonly controlled by a logon ID associated with an authorized account. At times system administrators may required an elevated level of access for system administration such as account management, database administration, or system and network administration.  To secure these actions privileged accounts should be configured and assigned to appropriate personnel. Proper administration of these access controls is important to ensure the integrity of University information and the normal business operation of University-managed and administered information resources.

Applicability

The intended audience for this control includes, but is not limited to, all information resource data/owners, management personnel, and system administrators.

The information resource owner or custodian is responsible for ensuring that the implementation measures described below are implemented.

Implementation

Information resource owners or their designees are responsible for:

• Establishment of the conditions which require privledged access.
• Creation and administration of seperate privledged accounts used for system administration.
• Monitoring the assignment of roles or attributes that provide elevated privileges.
• Monitoring changes to roles or attributes that provide elevated privileges.
• Ensuring that elevated access is revoked when no longer needed.
• Ensuring that users with privileged accounts are aware of the extraordinary responsibilities associated with the use of these accounts.