University of Connecticut University of UC Title Fallback Connecticut

Server Management Standards

Purpose

The purpose is to ensure that servers implemented by Schools, Colleges, Departments or individuals at UConn meet the standards outlined in this document.

Standard

  • Operating system must be patched according to patching guidelines
  • Servers must be installed in an established server (not client) network
  • Servers must be configured to utilize a host or network firewall
  • Servers must be configured to emit logs to a dedicated log collection server
  • Vulnerability scans must be scheduled to run and be reviewed at least monthly
  • All unnecessary services must be disabled
  • There must be an assigned professional IT staff person communicated to the Information Security Office (security@uconn.edu)

Associated Documents and Records

Policies

Acceptable Use Policy

Guidelines

Patch Implementation Guidelines

References

Information Security Technology Glossary

Standard Revision History

Date Version Author Details of Amendment
August 28, 2015 1 Jason Pufahl Published