Campus policies related to computers
What are the campus policies related to computers?
Here is a link to the campus policies related to computers and a second link for designated non-capital assets (DNCA).
https://it.umd.edu/about-dit/governance/it-policies-standards-guidelines/standards
https://finance.umd.edu/asset-management/designated-non-capital-assets
Here are specific requirements at a practical level.
- Customer responsibilities
- Patching computers
- If computers are managed by EIT, reboot the machine monthly to ensure patches take effect.
- If computers are not managed by EIT, apply patches to operating systems and applications to keep machines up to date.
- Physical security
- Keep devices and equipment in locked areas.
- Do not leave portable devices unattended.
- Disposal of old equipment and devices
- There is a required process to follow. No one is permitted to dispose of devices through any other process.
- Contact EIT (eit-help@umd.edu, x51634) for disposal of old devices. There are procedures that must be followed to manage inventory and to ensure any sensitive data is not exposed.
- Patching computers
- Inventory
- All desktops, laptops, server, tablets, and cell phones owned or leased by UMD must be tagged and put into inventory. Any devices that cost less than $5,000 are considered DNCA. Any devices over $5,000 are considered capital assets.
- Engineering IT Operations is acting as the asset specialist for DNCA. The asset comes to us first to be tagged and configured.
- Software EIT installs
- Trellix (previously FireEye) anti-virus
- This is required by the Division of Information Technology for all UMD owned computers.
- Insight VM
- This will be required in the near future by the Division of Information Technology to ensure that all computers are up to date on patches.
- Lansweeper
- This is used by Engineering IT for inventory purposes to help meet DNCA requirements.
- MakeMeAdmin (Windows) or partitioned accounts (Mac)
- In required situations, this allows authorized users to elevate privileges for a brief period of time to install software or make configuration changes.
- Central management
- JAMF for Macs
- Self service installation
- Security patches
- Configuration
- AD and Ninite for Windows
- UMD authentication
- Security patches
- Configuration
- Ansible for non-Glue Linux
- Security patches
- Configuration
- Puppet for Glue Linux
- Security patches
- Configuration
- JAMF for Macs
- Trellix (previously FireEye) anti-virus