+ Post New Thread
Results 1 to 13 of 13
MIS Systems Thread, SIMS password complexity / user cannot change pw in Technical; Hi All, We are one of many Birmingham schools who have just moved from Facility to SIMS. I have been ...
  1. #1
    Alis_Klar's Avatar
    Join Date
    Oct 2007
    Location
    East Birmingham
    Posts
    265
    Thank Post
    130
    Thanked 18 Times in 8 Posts
    Rep Power
    17

    SIMS password complexity / user cannot change pw

    Hi All, We are one of many Birmingham schools who have just moved from Facility to SIMS. I have been told by Link2ICT that SIMS lacks the ability to force complex passwords. Also they say you cannot stop a user changing their own password.

    Are either of these true. If so is there a way of stopping teacher changing their own password to "password".

    What I have done so far is to reset the password and then manually impersonated them and then changed the password to the first 5 characters (to make life easier for them) and told them not to change their password (chocolate teapot territory I know).

  2. #2

    Join Date
    Sep 2006
    Location
    London
    Posts
    1,248
    Thank Post
    33
    Thanked 335 Times in 225 Posts
    Rep Power
    75
    We recommend linking to AD - you then have all of the controls offered by MS.

  3. #3
    Alis_Klar's Avatar
    Join Date
    Oct 2007
    Location
    East Birmingham
    Posts
    265
    Thank Post
    130
    Thanked 18 Times in 8 Posts
    Rep Power
    17
    Is it also true there is no audit trail feature?

  4. #4

    Join Date
    Sep 2006
    Location
    London
    Posts
    1,248
    Thank Post
    33
    Thanked 335 Times in 225 Posts
    Rep Power
    75
    For what?

  5. #5

    vikpaw's Avatar
    Join Date
    Sep 2006
    Location
    Saudi Arabia
    Posts
    5,589
    Thank Post
    638
    Thanked 1,306 Times in 1,088 Posts
    Rep Power
    336
    Yep link to AD.
    I don't know if it's fixed in the latest version but some people had issues when linking to AD, basically after you search the user out and select, it doesn't include the domain name in the username box. it just says for example \vik.paw , but if you manually type in the start 'my_domain' before the '\' it works fine. then you have the same complexity that you enforce on the domain.

    not much auditing of who did what, if that's what you mean.

  6. #6


    Join Date
    Dec 2005
    Location
    In the server room, with the lead pipe.
    Posts
    4,534
    Thank Post
    271
    Thanked 752 Times in 590 Posts
    Rep Power
    218
    There's "User A logged on from Workstation B at Date:Time"

    There's no "User A logged on from Workstation B at Date:Time and then proceeded to change Joe Blogg's address to the wrong thing and that's why Mrs Bloggs never got that letter". Or at least, there isn't in a way that's exposed to the customer.

    So from a point of view of "who's been messing around with X", there's no audit trail unless it involves cash.

  7. #7
    Alis_Klar's Avatar
    Join Date
    Oct 2007
    Location
    East Birmingham
    Posts
    265
    Thank Post
    130
    Thanked 18 Times in 8 Posts
    Rep Power
    17
    We have previously used the audit trail in Facility and IIS log files to track who was using e-Portal from home to add offensive comments against pupils and staff.

    Does the Web facing SIMS product add more audit trails?
    Last edited by Alis_Klar; 28th June 2012 at 11:22 AM.

  8. #8

    vikpaw's Avatar
    Join Date
    Sep 2006
    Location
    Saudi Arabia
    Posts
    5,589
    Thank Post
    638
    Thanked 1,306 Times in 1,088 Posts
    Rep Power
    336
    Yes it should, but i can imagine you won't get access to the logs unless you self-host. That would be using IIS and sharepoint, tied to Active Directory logins. However, that will allow you to say as @pete said above that User A logged in from home. I'm not sure if it goes as far as to say, User A was served the behaviour add page, and entered details on person X. I think at some point, the calls go straight through to the SIMS server, and SIMS has no auditing.

  9. #9

    Join Date
    Sep 2006
    Location
    London
    Posts
    1,248
    Thank Post
    33
    Thanked 335 Times in 225 Posts
    Rep Power
    75
    I can't say I've heard of anything like you describe happening. Teacher access is tightly controlled - they can't just go into the basic pupil records and edit. Assessments are all audited with date, time and who made the entry. Pupil access is even more tighly controlled.

  10. #10
    Alis_Klar's Avatar
    Join Date
    Oct 2007
    Location
    East Birmingham
    Posts
    265
    Thank Post
    130
    Thanked 18 Times in 8 Posts
    Rep Power
    17
    The equivalent of the behaviour add screen in e-Portal is where we previously had the trouble. So assessments entries are audited but not behaviour add entries?

  11. #11

    vikpaw's Avatar
    Join Date
    Sep 2006
    Location
    Saudi Arabia
    Posts
    5,589
    Thank Post
    638
    Thanked 1,306 Times in 1,088 Posts
    Rep Power
    336
    We use custom groups, so not sure if the basic ones have changed, but i'm sure teachers could edit some student details, though it appears not now.
    On assessment, it records date but not time, and for a resultset linked grade, only the most recent saved entry is recorded. This is on the surface, the db may store other logs behind the scenes.
    Not sure how this changes through SLG.

  12. #12

    vikpaw's Avatar
    Join Date
    Sep 2006
    Location
    Saudi Arabia
    Posts
    5,589
    Thank Post
    638
    Thanked 1,306 Times in 1,088 Posts
    Rep Power
    336
    Quote Originally Posted by Alis_Klar View Post
    The equivalent of the behaviour add screen in e-Portal is where we previously had the trouble. So assessments entries are audited but not behaviour add entries?
    Behaviour auditing is lacking in SIMS and has been something many have requested for a long time.

  13. #13

    Join Date
    Sep 2006
    Location
    London
    Posts
    1,248
    Thank Post
    33
    Thanked 335 Times in 225 Posts
    Rep Power
    75
    I spoke to Geoff Perry the prooduct manager today about the Behaviour improvements that are due in the autumn release. A lot of change requests have been implemented but not a full audit trail. However the person that created the incident is automatically recorded and there are new permissions to prevent ordinary users from changing content.

SHARE:
+ Post New Thread

Similar Threads

  1. Users cannot change AD passwords from Macs
    By sidewinder in forum Mac
    Replies: 7
    Last Post: 3rd October 2011, 05:33 PM
  2. [SIMS] SIMS.net Invalid/user name password?
    By oxide54 in forum MIS Systems
    Replies: 6
    Last Post: 21st December 2010, 07:59 PM
  3. users cant change own passwords
    By jonny_2010 in forum Windows
    Replies: 1
    Last Post: 6th September 2010, 05:17 PM
  4. Replies: 3
    Last Post: 12th May 2010, 12:56 PM
  5. Force user to change password on login
    By keogk in forum Virtual Learning Platforms
    Replies: 3
    Last Post: 4th September 2009, 05:07 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •