TechInfo

From a PC using Windows XP:

* Start Menu -> Run
* Type \\studentshares.cortland.edu\home$\Cnumber(ie. \\studentshares.cortland.edu\home$\C00369745)
* Logon with your Net-ID in this format: cortland\username (ie. cortland\james.stewart)

From a PC using Windows Vista:

* Windows Key + R (Windows key is between the Alt and Ctrl on your keyboard)
* Type \\studentshares.cortland.edu\home$\Cnumber(ie. \\studentshares.cortland.edu\home$\C00369745)
* Logon with your Net-ID in this format: cortland\username (ie. cortland\james.stewart)

From a Mac

* Go Menu -> Connect to Server
* Type smb://studentshares.cortland.edu/home$/Cnumber (ie. smb://studentshares.cortland.edu/home$/C00369745)
* Logon with your Net-ID in this format: cortland\username (ie. cortland\james.stewart)

At this time we do not have a 64bit VPN client for Windows Vista users.  Our current hardware does not have a compaitable client, and will not support 64bit at this time.  We expect to upgrade the hardware sometime this summer, at which time a 64bit client will be available.

Open your U: drive. Usually this will be found under your My Computer icon labeled as U: (“username” on shares\home$). If it does not appear there you should be able to access it by clicking on the Start button, then on Run. In the box that appears type in the following:

\\shares\home$\username

For example, I would type in \\shares\home$\durrj

Regardless of how you accessed the U: drive a window should open displaying files that are currently stored there. Now you can simply drag the files you want to move to the U: drive into that window.  You may be dragging files from your Desktop or your My Documents folder.

Technology Help Center
SUNY Cortland
Winchell Hall
P: 607.753.2500
F: 607.753.5599
helpdesk@cortland.edu
Hours: M-Th, 8:00-6:00
F, 8:00-4:30
Summer Hours: M-F, 8:00-4:30

Under normal circumstances, only SUNY Cortland faculty, staff, and students are eligible for network access accounts. Under certain circumstances, others may be eligible for an account as a “Guest” and be issued a “Guest Account”. Guest Accounts are temporary short term Net-Id access accounts that are available to individuals who are conducting SUNY Cortland scholarly business, but are not officially on SUNY Cortland’s payroll. For example: identifiable scholarly activities, visiting speakers, persons auditing classes, and college sanctioned groups. All Guest Accounts are governed by the same computer and network usage policies as any other SUNY Cortland account. To review these policies please visit the Information Resources Web site at: http://www.cortland.edu/ir/.

What is a Guest Account? A SUNY Cortland Guest Account is a temporary short-term Net-ID access account.

How long can I keep my Guest Account? Your Guest Account will have set start and end dates and times. The dates and times will coincide with the duration of your college sponsored engagement.

Who can get a Guest Account? Individuals who are conducting SUNY Cortland scholarly business, but are not officially on SUNY Cortland’s payroll, for example: visiting speakers, persons auditing classes, and college sanctioned individuals or groups, sponsored events. All Guest Account requests must come from at SUNY Cortland sponsor. The “sponsor” must be a current SUNY Cortland employee.

How can I get a Guest Account? Your official SUNY Cortland sponsor will be responsible for requesting your Guest Account.

Who can create Guest Accounts? Guest accounts can be created by calling the Technology Help Center or the Circulation Desk in the Memorial Library. Prior arrangements should be made. Last minute requests will not be guaranteed.

Auditing a Class. The instructor of the class must provide specific information before a temporary Guest Account is created. The account can be created at the Circulation Desk in the Library. No account will be created without the required information from the instructor.

Information required from the instructor:

• Instructor’s Name: ________________________________________________
• Class being audited: ______________________________________________
• Days class/lab are held: ___________________________________________
• Name of person auditing the class: ___________________________________
• I _______________________________verify that _______________________ is auditing __________________ and requires network access during class/lab periods. I understand that access is limited solely to the network and that no account will be given for access to BannerWeb or WebCT. I also understand that this Guest Account is governed by the Guest Account Policies and the College’s Computer and Network Use Policies.
  Instructor’s Signature: _______________________________________

Administrative Computing
SUNY Cortland
Winchell Hall
607.753.2501

Some Mac users have been experiencing problems when they create media content (podcasts, vodcasts and videos) and attempt to work with those files while they are stored in their Network storage space. The files will typically become corrupt and will either be partially or totally unplayable, causing the creator to have to scrap them and start all over. The problem is probably a result of insufficient transfer rate (or volume) from the network storage. Some media applications, like Final Cut Pro for example, suggest that you never work with media files from network storage. You may have successfully worked on a file in your Network space, but as that file grows in complexity, chances are, you are going to eventually have a problem.There is a simple work around to avoid any problems. If you are working in a public Mac lab, when you first create your file, save it to the Storage container. Continue working on the file on that local partition. (The Storage container is a local drive or drive partition and will be able to safely handle the transfer rate of the software.) You may safely overwrite the file any time you make a modification to it. At the end of your session, quit the application, then drag a copy of your media file(s) to your network storage. If you are leaving the lab for the day, be a good Public Lab Citizen and delete your project files from the Storage drive. (It will only take a few minutes or seconds to copy it back when you return and you’re freeing up valuable space for others to use.) The next time you log in, your file will be safely stored on your network drive. Copy the file back to the Storage container of the workstation you are logged into and open the local copy to make your modifications. When you are finished, copy your saved local copy from the Storage container back to your Network space, overwriting your original if you wish. If you follow this workflow, you will not have difficulty with corrupted files.

Users of the MultiMedia Computer Labs in the Library have been experiencing an error message when they attempt to select, Export Podcast to Disk… from the Share menu. In most instances, the error message does not occur on the first attempt to export. But, it will occur with any subsequent attempt to export or overwrite the podcast. This error is repeatable and appears to be unrelated to the location that the user is attempting to export to. We have not discovered any knowledge base documentation relating to this issue and have opened a posting in response.There are a couple of ways to work around this problem. Perhaps the easiest is to select the command, Send Podcast to iTunes, under the Share menu. This will create the same .m4a file that the export function would create and places it in your Music folder. The path to the file is User Home Directory/Music/iTunes/iTunes Music/. An easier way to locate the file is to do a Spotlight search. Click on the blue magnifying glass in the upper right hand corner of the menu bar. In the search field, type the name of your podcast file. It will appear in a list that you can open. After locating the file, you should be able to drag it to any location you choose.Remember, when you log out of the computer, your home directory will be deleted along with any files you’ve stored there. So, it’s important to either burn a disk copy of your file, or put a copy on the Storage drive.We will track any updates on this problem and report them here after we’ve verified their accuracy. We appreciate your patience as we work to resolve this issue.Macintosh Technical Support Staff

The SUNY Cortland campus communications network is maintained solely for the support of the College mission and to further enhance our academic interests.

It is the responsibility of each student to use the campus communications network appropriately and in accordance with campus, local, state, and federal regulations. Access to network resources is a privilege. As such, access can be suspended at any time should a user violate the HallNet Terms of Service and/or the Acceptable Use Policy. (http://www.cortland.edu/hallnet/acceptable_use.asp).

Because the campus network is a shared resource, excessive non-academic use of network resources which inhibit usage by another person is not acceptable. Users operating network-intensive applications, or in possession of defective network-connected devices (i.e. viruses, spy-ware), can and will be disconnected from the network without prior notification.

SUNY Cortland Network Services maintains the following definition of Acceptable Use:

• Use of the campus network for illegal activities is prohibited.
• Strict compliance of the Federal Digital Millennium Copyright Act is enforced.
• The campus network cannot be used for any commercial interests or profit-making enterprises which are not officially sanctioned by SUNY Cortland
• Users are not permitted to operate servers of any type (ie. DHCP, Web server, Mail, News, FTP, Quake, etc).
• Use of the network to harass, abuse, intimidate others is prohibited.
• Use of the network to misrepresent or obfuscate one’s identity for the pursuit of illegal or questionable gain is prohibited.
• Any attempt to circumvent network security schemes is prohibited.
• Users must never share or distribute their NetID and password to any other user

Wireless signal generators (access points, wireless routers, etc.) that are not authorized and installed by Network Services are considered rogue and prohibited on the campus network. Network Services has the authority to shut down any roque wireless device and remove it from the campus network.

Violations of Acceptable Use Policy and/or HallNet Terms of Service will be adjudicated by the SUNY Cortland Office of Judicial Affairs and may result in loss of network privileges or judicial sanction as outlined in the Code of Student Conduct.

Violations of local, state, and federal law will be referred to the appropriate authorities.

Administrative Computing
SUNY Cortland
Winchell Hall
607.753.2501

INTRODUCTION:

In order for SUNY Cortland to execute its mission of supporting technology used for teaching and learning, the campus is committed to providing a secure yet open network that protects the integrity and confidentiality of information while maintaining its ease of access.

POLICY:

Each member of the campus community is responsible for the security and protection of electronic information resources over which he or she has control. Resources to be protected include networks, computers, software, and data. The physical and logical integrity of these resources must be protected against threats such as unauthorized intrusions, malicious misuse, or inadvertent compromise. Activities outsourced to off-campus entities must comply with the same security requirements as in-house activities.

Providers individuals who design, manage, and operate campus electronic information resources, e.g. application programmers, systems operators, network and system administrators) must:

• become knowledgeable regarding relevant security requirements and guidelines;
• analyze potential threats and the feasibility of various security measures in order to provide recommendations to the administration;
• implement security measures that mitigate threats, consistent with the level of acceptable risk established by administrative officials;
• establish procedures to ensure that privileged accounts are kept to a minimum and that privileged users comply with privileged access guidelines

Users (individuals who access and use campus electronic information resources) must:

• become knowledgeable about relevant security requirements and guidelines;
• protect the resources under their control, such as access passwords, computers, and data they download

Insufficient security measures at any level may cause resources to be damaged, compromised, stolen, or become a liability to the campus. Therefore, responsive actions may be taken. For example, if a situation is deemed serious enough, computer(s) posing a threat will be blocked from network access.

NETWORK TOPOLOGY:

The SUNY Cortland campus network is a converged IP voice/video/data layer 3 network using gigabit Ethernet as the backbone, scalable to 10 gigabit. Reference the following link for further information: http://www.cortland.edu/adminc/NetworkInfracture.htm

KEY SECURITY ELEMENTS:

Logical Security:

All computers connected to the campus network must have the most recently available and appropriate software security patches and the most current level of antivirus installed.

Adequate authentication and authorization functions must be provided.

Attention must be given not only to large systems but also to smaller computers which, if compromised, could constitute a threat to campus or off-campus resources, including computers maintained by departments other than Administrative Computing Services. These computers must follow all campus standard security strategies.

Physical Security:

Appropriate controls must be employed to protect physical access to all technology resources. These may range in scope and complexity from extensive security installations to protect a room or facility where server machines are located, to simple measures taken to protect a User’s display screen.

Minimum Security Standards for SUNY Cortland’s Campus Networked Devices

The following minimum standards are required for devices connected to the campus network.

1. Software patch updates
   Campus networked devices will be automatically configured to receive the most current security patches as they become available. Exceptions may be made for patches that compromise the usability of critical applications.
2. Anti-virus software
   The campus standard Anti-virus software must be running and definitions up-to-date on every level of device, including clients, file servers, mail servers, database servers and any other types of campus networked devices.
3. Enterprise and client levels hardware/software firewall
   The campus network will be segmented and protected at all times from potential intrusion by an enterprise level firewall hardware device.
   Host-based firewall software for any particular type of device currently connected to the campus network must be running the campus standard host-based firewall software.
4. Passwords
   All departmental and shared access clients (desktops, handhelds, and tablet PC’s) and servers connected to the campus network must identify users and authorize access by means of passwords or other campus standard secure authentication processes.
   All default passwords for access to network-accessible devices must be modified.Passwords:
   • must remain secure at all time
   • must never be shared with others
   • will have a maximum lifetime of 6 months
   • must be at least 6 character in length
   • will have password history enforced
   • will auto expire at initial login

   Note: students assign their own password so this will not relate to them

   Passwords used by system administrators for their personal access to a service or device must not be the same as those used for privileged access to any service or device.

5. No unencrypted authentication
   Unencrypted device authentication mechanisms are only as secure as the network upon which they are used. Traffic across the campus network may be secretly monitored, rendering these authentication mechanisms vulnerable to compromise. Therefore, all campus devices must use only encrypted authentication mechanisms unless otherwise authorized.
6. No unauthenticated email relays
   Campus devices must not provide an active SMTP service that allows unauthorized third parties to relay email messages, i.e., to process an e-mail message where neither the sender nor the recipient is a local user. Before transmitting email to a non-local address, the sender must authenticate with the SMTP service. Authenticating the machine (e.g. IP address/domain name) rather than the sender is not sufficient to meet this standard.
7. Remote Access
   Off campus access to all campus technology resources will be provided through a Virtual Private Network (VPN) hardware appliance. Off campus client machines will be required to run the campus standard VPN software to gain access to campus technology resources. Reference the following link: http://www.cortland.edu/adminc/VPNClient(lv.2).htm
8. No unauthenticated proxy services
   Unauthenticated proxy servers may enable an attacker to execute malicious programs on the server in the context of an anonymous user account. Therefore, no unauthenticated proxy servers will be allowed to run on the campus network.
9. Physical security
   Unauthorized physical access to an unattended device can result in harmful or fraudulent modification of data, fraudulent email use, or any number of other potentially dangerous situations. In light of this, where possible and appropriate, devices must be configured to “lock” and require a user to re-authenticate if left unattended for a predetermined period of time.
   Physical security of the campus server room is a critical component of information security and should not be taken lightly. Physical access to the campus server room must be granted and authorization given by the campus CSO (Cyber Security Officer). The CSO will request from the campus card access administrator to grant access to the server room for a specific day and period of time. At the end of which access will again be denied to all unauthorized individuals.
   • CIO – Chief Information Officer
   • CSO – Cyber Security Officer
   • DSA – Database Security Administrator
   • SNSA – System and Network Security Administrator
   • Information Resources Policy Page: http://www.cortland.edu/ir/
   • Security Tips: http://www.cortland.edu/hallnet/security.asp
   • Virus Information: http://www.cortland.edu/hallnet/help/virus.asp
   • Acceptable Use: http://www.cortland.edu/hallnet/acceptable_use.asp
   • Family Educational Rights and Privacy Act (FERPA): http://www.ed.gov/policy/gen/guid/fpco/ferpa/index.html
   • Health Insurance Portability and Accountability Act (HIPAA): http://www.hhs.gov/ocr/hipaa/privacy.html
   • Gramm-Leach Bliley Act: http://www.ftc.gov/privacy/privacyinitiatives/glbact.html

Entities with important campus electronic information security responsibilities include:

Related Documents:

SUNY Cortland’s VPN Connection: Terms and Services Agreement

• �
  1. Only current employees of SUNY Cortland with an Active Network Logon Account may access internal resources via VPN. Special accounts will not be established for the sole purpose of connecting to internal college resources via a VPN connection
  2. All remote access to campus shares and internal resources will only be granted via a secure VPN tunnel.
  3. It is the responsibility of users with VPN privileges to ensure that unauthorized users are not allowed access to SUNY Cortland internal networks.
  4. VPN gateways will be managed by SUNY Cortland’s Administrative Computing Services Network Operations group.
  5. All computers connecting to SUNY Cortland’s internal networks via VPN or any other technology must first be protected by the most current anti-virus software, and routinely run the appropriate update processes to get the latest updates available for their computer’s operating system, software, and hardware.
  6. Only Administrative Computing Services approved VPN clients may be used.
  7. By using VPN technology with personal equipment, users must understand that their machines are a de facto extension of SUNY Cortland’s network, and as such are subject to all of the same Information Resources Policies listed at http://www.cortland.edu/ir/ on the Information Resources web site.
  8. Support is limited to Windows 2000/XP, and Apple OS X.

Administrative Computing
SUNY Cortland
Winchell Hall
607.753.2501

Copyright Infringements Reported by Outside Agencies

Upon notification of copyright infringement, Network Administrator completes Judicial Affairs Incident Report Form and forwards to Judicial Affairs Director and to Library Director who serves as Campus Copyright Compliance Officer.

Library Director responds to notice of copyright infringement.

Judicial Affairs Director handles infringement according to Judicial Affairs review procedures. Students found in violation of the Electronic Use Policy will likely receive the following sanctions: 1) one semester disciplinary probation; 2) letter of apology to Network Administrator; and 3) writing a paper on copyright.
Copyright Infringements or Network Misuse Not Reported by Outside Agencies

First violation – Network Administrator notifies student directly.

Subsequent violations – Network Administrator completes Judicial Affairs Incident Report Form and forwards to Judicial Affairs. Judicial Affairs Director handles infringement according to Judicial Affairs review procedures as described above; MP3 violations are likely to be sanctioned with residence hall probation; movie downloads are likely to be sanctioned with disciplinary probation. Any repeated violations will likely result in additional and more severe sanctions.

Memorial Library
SUNY Cortland
607.753.2221