To echo Chris, I hope you don't work for a public company because that has to be against some sort of Sarbanes-Oxley regulation.
Sent from my iPhone On Oct 8, 2012, at 4:11 PM, strauss <stra...@unt.edu> wrote: ** It is an incredibly bad security practice because it destroys any accountability for identity management. It is akin to reusing the social security numbers of deceased persons for newborns (try that analogy on them). We do battle with our PeopleSoft drones over this regularly, but it’s really a problem with them not having a unique index on the table for workforce ids; the LDAP login names almost never get duplicated, and our AD syncs to LDAP for that data. If you ever get a security audit, and they are reusing login ids in AD as a standard practice, your organization will fail the audit (unless the audit is by Arthur Andersen LLP). Christopher Strauss, Ph.D. Call Tracking Administration Manager University of North Texas Computing & IT Center http://itsm.unt.edu/ *From:* Action Request System discussion list(ARSList) [ mailto:arslist@ARSLIST.ORG <arslist@ARSLIST.ORG>] *On Behalf Of *Jase Brandon *Sent:* Monday, October 08, 2012 2:26 PM *To:* arslist@ARSLIST.ORG *Subject:* Re-use Login ID in Remedy ** Hello All, I have been approached and asked about how we can re-use Login Id' and I've never been asked to do this anywhere else. Of course my initial reply was "We shouldn't Do That", but I need more of a justification as the company reuses login ids via AD as a standard. Ive told them Login Id is associated with all things ITSM/CI's. I see this being a recipe for disaster. Can anyone help me out with your thoughts on this one please? Has anyone else done anything like this before? Thanks in Advance, Jase Brandon _attend WWRUG12 www.wwrug.com ARSlist: "Where the Answers Are"_ _attend WWRUG12 www.wwrug.com ARSlist: "Where the Answers Are"_ _______________________________________________________________________________ UNSUBSCRIBE or access ARSlist Archives at www.arslist.org attend wwrug12 www.wwrug12.com ARSList: "Where the Answers Are"
