{"id":28608,"date":"2024-09-24T15:15:29","date_gmt":"2024-09-24T19:15:29","guid":{"rendered":"https:\/\/michigan.it.umich.edu\/news\/?p=28608"},"modified":"2024-09-24T15:15:30","modified_gmt":"2024-09-24T19:15:30","slug":"guidelines-for-managing-active-directory-umroot-accounts","status":"publish","type":"post","link":"https:\/\/michigan.it.umich.edu\/news\/2024\/09\/24\/guidelines-for-managing-active-directory-umroot-accounts\/","title":{"rendered":"Guidelines for Managing Active Directory (UMROOT) Accounts"},"content":{"rendered":"\n<div class=\"wp-block-uagb-image uagb-block-20cd20fc wp-block-uagb-image--layout-default wp-block-uagb-image--effect-static wp-block-uagb-image--align-none\"><figure class=\"wp-block-uagb-image__figure\"><img decoding=\"async\" srcset=\"https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2024\/09\/GuidelinesforManagingADAccounts-Bridget-Weise-Knyal.png ,https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2024\/09\/GuidelinesforManagingADAccounts-Bridget-Weise-Knyal.png 780w, https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2024\/09\/GuidelinesforManagingADAccounts-Bridget-Weise-Knyal.png 360w\" sizes=\"auto, (max-width: 480px) 150px\" src=\"https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2024\/09\/GuidelinesforManagingADAccounts-Bridget-Weise-Knyal.png\" alt=\"\" class=\"uag-image-28609\" width=\"412\" height=\"275\" title=\"GuidelinesforManagingADAccounts - Bridget Weise Knyal\" loading=\"lazy\" role=\"img\"\/><\/figure><\/div>\n\n\n\n<p>U-M IT professionals who manage Active Directory (AD) accounts in UMROOT have an important responsibility for the security of those accounts. This responsibility includes ensuring that they are:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Reviewed regularly<\/li>\n\n\n\n<li>Used appropriately<\/li>\n\n\n\n<li>Named using correct naming conventions<\/li>\n\n\n\n<li>Removed promptly when they are no longer needed.\u00a0<\/li>\n<\/ul>\n\n\n\n<p>Those who manage AD accounts in UMROOT should review a complete list of guidelines annually. Please see <a href=\"https:\/\/its.umich.edu\/accounts-access\/active-directory\/central-accounts#guidelines\">Active Directory Non-uniqname Accounts<\/a>&nbsp; (U-M Weblogin required). Thank you for diligence in managing these elevated accounts and doing your part to protect U-M\u2019s digital assets.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>U-M IT professionals who manage Active Directory (AD) accounts in UMROOT have an important responsibility for the security of those accounts. This responsibility includes ensuring that they are: Those who manage AD accounts in UMROOT should review a complete list of guidelines annually. Please see Active Directory Non-uniqname Accounts&nbsp; (U-M Weblogin required). Thank you for diligence in managing\u2026 <span class=\"read-more\"><a href=\"https:\/\/michigan.it.umich.edu\/news\/2024\/09\/24\/guidelines-for-managing-active-directory-umroot-accounts\/\">Read More &raquo;<\/a><\/span><\/p>\n","protected":false},"author":194,"featured_media":28609,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_uag_custom_page_level_css":"","_umich_oidc_access":"","_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_ef_editorial_meta_date_first-draft-date":"","_ef_editorial_meta_paragraph_assignment":"","_ef_editorial_meta_checkbox_needs-photo":"","_ef_editorial_meta_number_word-count":"","footnotes":""},"categories":[27],"tags":[488,940,23],"class_list":["post-28608","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-safe-computing","tag-cybersecurity","tag-information-assurance","tag-security"],"uagb_featured_image_src":{"full":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2024\/09\/GuidelinesforManagingADAccounts-Bridget-Weise-Knyal.png",412,275,false],"thumbnail":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2024\/09\/GuidelinesforManagingADAccounts-Bridget-Weise-Knyal-400x266.png",400,266,true],"medium":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2024\/09\/GuidelinesforManagingADAccounts-Bridget-Weise-Knyal-300x200.png",300,200,true],"medium_large":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2024\/09\/GuidelinesforManagingADAccounts-Bridget-Weise-Knyal.png",412,275,false],"large":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2024\/09\/GuidelinesforManagingADAccounts-Bridget-Weise-Knyal.png",412,275,false],"1536x1536":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2024\/09\/GuidelinesforManagingADAccounts-Bridget-Weise-Knyal.png",412,275,false],"2048x2048":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2024\/09\/GuidelinesforManagingADAccounts-Bridget-Weise-Knyal.png",412,275,false],"excerpt-thumbnail":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2024\/09\/GuidelinesforManagingADAccounts-Bridget-Weise-Knyal-200x140.png",200,140,true],"themonic-thumbnail":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2024\/09\/GuidelinesforManagingADAccounts-Bridget-Weise-Knyal-60x42.png",60,42,true],"ioslider-thumbnail":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2024\/09\/GuidelinesforManagingADAccounts-Bridget-Weise-Knyal.png",412,275,false],"post-thumbnail":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2024\/09\/GuidelinesforManagingADAccounts-Bridget-Weise-Knyal.png",412,275,false],"400x250-crop":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2024\/09\/GuidelinesforManagingADAccounts-Bridget-Weise-Knyal-400x250.png",400,250,true]},"uagb_author_info":{"display_name":"Bridget Weise Knyal, ITS Privacy Office","author_link":"https:\/\/michigan.it.umich.edu\/news\/author\/bweise\/"},"uagb_comment_info":0,"uagb_excerpt":"U-M IT professionals who manage Active Directory (AD) accounts in UMROOT have an important responsibility for the security of those accounts. This responsibility includes ensuring that they are: Those who manage AD accounts in UMROOT should review a complete list of guidelines annually. Please see Active Directory Non-uniqname Accounts&nbsp; (U-M Weblogin required). Thank you for&hellip;","_links":{"self":[{"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/posts\/28608","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/users\/194"}],"replies":[{"embeddable":true,"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/comments?post=28608"}],"version-history":[{"count":1,"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/posts\/28608\/revisions"}],"predecessor-version":[{"id":28610,"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/posts\/28608\/revisions\/28610"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/media\/28609"}],"wp:attachment":[{"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/media?parent=28608"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/categories?post=28608"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/tags?post=28608"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}