+ Post New Thread
Page 1 of 2 12 LastLast
Results 1 to 15 of 17
Hardware Thread, Smartcards? in Technical; Hi there, Does anyone here use smartcards for staff? If so what is your feedback? Thanks...
  1. #1

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    15,386
    Thank Post
    797
    Thanked 1,585 Times in 1,388 Posts
    Blog Entries
    10
    Rep Power
    427

    Smartcards?

    Hi there,

    Does anyone here use smartcards for staff? If so what is your feedback?

    Thanks

  2. #2
    Antp's Avatar
    Join Date
    Sep 2008
    Location
    Lancashire
    Posts
    84
    Thank Post
    10
    Thanked 0 Times in 0 Posts
    Rep Power
    12
    i was just about to post a topic on this.
    does anyone use them and whats your setup?

  3. #3

    Domino's Avatar
    Join Date
    Oct 2006
    Location
    Bromley
    Posts
    4,020
    Thank Post
    212
    Thanked 1,163 Times in 758 Posts
    Blog Entries
    4
    Rep Power
    480
    seems li
    e a recipe for disaster to me.

    as soon as kids learn teachers need something they'll scupper it

  4. #4

    Join Date
    Dec 2008
    Location
    Essex
    Posts
    2,137
    Thank Post
    1
    Thanked 326 Times in 316 Posts
    Rep Power
    76
    what type of smartcards and what is your goal for using them?

  5. #5

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    15,386
    Thank Post
    797
    Thanked 1,585 Times in 1,388 Posts
    Blog Entries
    10
    Rep Power
    427
    nothing in mind yet just would like to know opinions of others. Want to use them in one of my schools to reduce students accessing staff accounts.

  6. #6

    Join Date
    Dec 2008
    Location
    Essex
    Posts
    2,137
    Thank Post
    1
    Thanked 326 Times in 316 Posts
    Rep Power
    76
    interesting, but why use smartcards when you can use MS security, assuming you're using MS servers/clients on yr network? Spend money on other ICT investments :-)

  7. #7

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    15,386
    Thank Post
    797
    Thanked 1,585 Times in 1,388 Posts
    Blog Entries
    10
    Rep Power
    427
    Nothing else to spend money on really. What other security settings can i do to stop students shoulder surfing or staff telling them passwords?

    All the laptops have smartcard readers, have some keyboards with built in ones so got the stuff.
    Last edited by FN-GM; 9th December 2008 at 05:52 PM.

  8. #8
    DrPerceptron's Avatar
    Join Date
    Dec 2008
    Location
    In a house
    Posts
    849
    Thank Post
    32
    Thanked 120 Times in 102 Posts
    Rep Power
    37
    Put in place an AUP which implies serious consequences for staff allowing their usernames/passwords to be used by students - perhaps hiding all their work to emphasise the issue.

    Although you can't do it in 2003 networks, in 2008 you can enforce a seperate, password policy for staff (or whoever you want) so they can be forced to use an 8 character, multi-case password etc.

    We haven't got that kind of problem here, maybe because our staff are aware of the risks - partly because we had an incident which came about through leaving a laptop unlocked with nobody in the room....


    I never saw much point in the smart card approach - surely it's easier than a password to get hold of? plus I can guarantee staff would lose it (I don't even know what one is :P)

    What about fingerprint readers? although I don't know how you'd centralise all of that and make it stick at logon...

  9. #9

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    15,386
    Thank Post
    797
    Thanked 1,585 Times in 1,388 Posts
    Blog Entries
    10
    Rep Power
    427
    Put in place an AUP which implies serious consequences for staff allowing their usernames/passwords to be used by students - perhaps hiding all their work to emphasise the issue.
    we have it but students still look

    Although you can't do it in 2003 networks, in 2008 you can enforce a seperate, password policy for staff (or whoever you want) so they can be forced to use an 8 character, multi-case password etc.
    in place all users change passwords regular


    It is possible to use both smartcard and password.

    Nothing is set in stone i just want peoples personal experiences.

  10. #10

    Join Date
    Dec 2008
    Location
    Essex
    Posts
    2,137
    Thank Post
    1
    Thanked 326 Times in 316 Posts
    Rep Power
    76
    You can use w2k3 to enforce password with minimu chracters, lengths, requiremts etc...same as w2k.

    Smart cards are a pain, what would be nice is biometrics. Very easy to set-up and straight forward. I'm only saying that because most banks/retails miust comply with PCI DSS. This way no-one can lose thier finger/eyes and it certaininly cant be shared. You can extend this to allow access to your schools and implement a automatic payment scheme for children who have school dinners etc...no more bullying for lunch time money (at some schools) and kids wont lose thier money.

  11. #11

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    15,386
    Thank Post
    797
    Thanked 1,585 Times in 1,388 Posts
    Blog Entries
    10
    Rep Power
    427
    You can extend this to allow access to your schools and implement a automatic payment scheme for children who have school dinners etc...no more bullying for lunch time money (at some schools) and kids wont lose thier money.
    We have it for dinners, infact our school was the first in the country to introduce it.

    I don't want to use biometrics as not all of our laptops have integrated readers in them.

  12. #12
    DrPerceptron's Avatar
    Join Date
    Dec 2008
    Location
    In a house
    Posts
    849
    Thank Post
    32
    Thanked 120 Times in 102 Posts
    Rep Power
    37
    You can use w2k3 to enforce password with minimu chracters, lengths, requiremts etc...same as w2k.
    In 2003 you can have 1 policy, set at domain level, In 2008, you can have a different policy for every student if you wanted and had the insanity to do so.



    Then I would say, if students still look, educate your staff in asking them not to look - I bet they wouldn't let their students look at their bank PIN if they were around at the time, this isn't much different.

    Perhaps it's time to bring out the red mist and perhaps 'fake' a data security incident with a member of staff or ask a willing SMT to send an email about it.

  13. #13

    Domino's Avatar
    Join Date
    Oct 2006
    Location
    Bromley
    Posts
    4,020
    Thank Post
    212
    Thanked 1,163 Times in 758 Posts
    Blog Entries
    4
    Rep Power
    480
    Quote Originally Posted by FN-GM View Post

    It is possible to use both smartcard and password.
    well, if you can do one without the other then you're not gaining anything from it...

  14. #14

    Join Date
    Dec 2008
    Location
    Essex
    Posts
    2,137
    Thank Post
    1
    Thanked 326 Times in 316 Posts
    Rep Power
    76
    [QUOTE=DrPerceptron;262723]In 2003 you can have 1 policy, set at domain level, In 2008, you can have a different policy for every student if you wanted and had the insanity to do so.



    yes your right, read your post quick, thought you were confused about password/account settings in w2k/3

  15. #15

    EduTech's Avatar
    Join Date
    Aug 2007
    Location
    Reading
    Posts
    4,980
    Thank Post
    158
    Thanked 888 Times in 699 Posts
    Blog Entries
    3
    Rep Power
    265
    I hope i get this right...

    But we were thinking of implementing smartcards for staff, but only to use at home and accessing our VLE (still in development) this is because we were informed that accessing the school externally there has to be 2 sets of authentication.

    Pretty sure thats right.. but that is the only way we were thinking of using smart cards.

    James.

SHARE:
+ Post New Thread
Page 1 of 2 12 LastLast

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •