Identity and Access Management

Op12.07-8 Identity and Access Management

Definitions

Identity: Information system access credentials (e.g., BearPass login).

Identity maintenance: Modification of access credentials (e.g., password reset).

Policy statement

Identity maintenance for all enrolled or employed members of the Missouri State University community must be performed online or in person and must not be made by telephone, email, or text messaging. An automated process will be used to disable or remove a student’s system access credentials after graduation or a period of nonattendance. Access credentials will be disabled for repeated misuse. See the Human Resources Management Policy for guidance when an employee’s or contractor’s relationship with the University ends.

Only unique access credentials will be used. Generic or shared access credentials may not be used. Passwords must be changed periodically and have sufficient complexity, as required by policy. Users must keep their passwords private and abide by all University information services policies.

The University may use a network access control system to validate the identity and suitability of those connecting to the network.