1.0 Scope
1.1 This SOP applies to all IT staff responsible for user management within the IT Technology Group. This standard applies to adding and removing users to the IT Techs group in Active Directory. A standardized process for adding and removing users is needed to ensure proper access and security protocols are followed.
2.0 Purpose: The purpose of IT Techs is to provide technicians with administrative access to university-managed endpoints within the Active Directory domain. This access is crucial for performing tasks such as installing software, troubleshooting issues, and managing system configurations. This administrative access should be granted to technical services employees directly responsible for endpoint management. This ensures that only qualified personnel can make significant system changes, maintaining security and stability across the enterprise.
3.0 Responsibility
3.1 Endpoint Systems Manager: Ensure compliance with this SOP.
3.1.1 Oversee the process of adding and removing users.
3.1.2 Verify that all user additions and removals are properly documented in ITSM.
3.1.3 Conduct regular audits to ensure adherence to security protocols.
4.0 Approval Authority
4.1 Director of Technical Services: Approve any changes to this SOP.
4.1.1 Review and authorize user access requests.
4.1.2 Ensure the SOP is current with current security standards and organizational policies.
5.0 Standards
5.1 Security Standards:
5.1.1 Follow industry best practices for user account management.
5.1.2 Ensure all user accounts have strong, unique passwords.
5.1.3 Documentation Standards:
5.1.4 Maintain records of all user additions and removals in ITSM.
6.0 Procedures
6.1 Adding Users:
6.1.1 Receive and verify user information from employee onboarding tickets in ITSM.
6.1.2 Add the user account to Active Directory.
6.1.3 Assign appropriate group memberships and access levels.
6.1.4 Notify the user.
7.5 Removing Users:
7.5.1 Receive and verify user removal requests from employee Clearance tickets.
7.2.2 Disable user account in Active Directory.
8.0 Review and Update
8.1 This SOP should be reviewed annually to remain current with university policies and technology changes.