Server Management Standards

Purpose

The purpose is to ensure that servers implemented by Schools, Colleges, Departments or individuals at UConn meet the standards outlined in this document.

Standard

  • Operating system must be patched according to patching guidelines
  • Servers must be installed in an established server (not client) network
  • Servers must be configured to utilize a host or network firewall
  • Servers must be configured to emit logs to a dedicated log collection server
  • Vulnerability scans must be scheduled to run and be reviewed at least monthly
  • All unnecessary services must be disabled
  • There must be an assigned professional IT staff person communicated to the Information Security Office (security@uconn.edu)

Associated Documents and Records

Policies

Acceptable Use Policy

Guidelines

Patch Implementation Guidelines

References

Information Security Technology Glossary

Standard Revision History

Date Version Author Details of Amendment
August 28, 2015 1 Jason Pufahl Published