MIS Systems Thread, SIMS password complexity / user cannot change pw in Technical; Hi All, We are one of many Birmingham schools who have just moved from Facility to SIMS. I have been ...
27th June 2012, 04:14 PM #1
SIMS password complexity / user cannot change pw
Hi All, We are one of many Birmingham schools who have just moved from Facility to SIMS. I have been told by Link2ICT that SIMS lacks the ability to force complex passwords. Also they say you cannot stop a user changing their own password.
Are either of these true. If so is there a way of stopping teacher changing their own password to "password".
What I have done so far is to reset the password and then manually impersonated them and then changed the password to the first 5 characters (to make life easier for them) and told them not to change their password (chocolate teapot territory I know).
IDG Tech News
27th June 2012, 06:21 PM #2
We recommend linking to AD - you then have all of the controls offered by MS.
28th June 2012, 10:35 AM #3
Is it also true there is no audit trail feature?
28th June 2012, 10:57 AM #4
28th June 2012, 11:15 AM #5
Yep link to AD.
I don't know if it's fixed in the latest version but some people had issues when linking to AD, basically after you search the user out and select, it doesn't include the domain name in the username box. it just says for example \vik.paw , but if you manually type in the start 'my_domain' before the '\' it works fine. then you have the same complexity that you enforce on the domain.
not much auditing of who did what, if that's what you mean.
28th June 2012, 11:16 AM #6
There's "User A logged on from Workstation B at Date:Time"
There's no "User A logged on from Workstation B at Date:Time and then proceeded to change Joe Blogg's address to the wrong thing and that's why Mrs Bloggs never got that letter". Or at least, there isn't in a way that's exposed to the customer.
So from a point of view of "who's been messing around with X", there's no audit trail unless it involves cash.
28th June 2012, 12:20 PM #7
We have previously used the audit trail in Facility and IIS log files to track who was using e-Portal from home to add offensive comments against pupils and staff.
Does the Web facing SIMS product add more audit trails?
Last edited by Alis_Klar; 28th June 2012 at 12:22 PM.
30th June 2012, 11:18 AM #8
Yes it should, but i can imagine you won't get access to the logs unless you self-host. That would be using IIS and sharepoint, tied to Active Directory logins. However, that will allow you to say as @pete said above that User A logged in from home. I'm not sure if it goes as far as to say, User A was served the behaviour add page, and entered details on person X. I think at some point, the calls go straight through to the SIMS server, and SIMS has no auditing.
1st July 2012, 04:51 PM #9
I can't say I've heard of anything like you describe happening. Teacher access is tightly controlled - they can't just go into the basic pupil records and edit. Assessments are all audited with date, time and who made the entry. Pupil access is even more tighly controlled.
2nd July 2012, 09:15 AM #10
The equivalent of the behaviour add screen in e-Portal is where we previously had the trouble. So assessments entries are audited but not behaviour add entries?
2nd July 2012, 09:27 AM #11
We use custom groups, so not sure if the basic ones have changed, but i'm sure teachers could edit some student details, though it appears not now.
On assessment, it records date but not time, and for a resultset linked grade, only the most recent saved entry is recorded. This is on the surface, the db may store other logs behind the scenes.
Not sure how this changes through SLG.
2nd July 2012, 09:27 AM #12
Behaviour auditing is lacking in SIMS and has been something many have requested for a long time.
Originally Posted by Alis_Klar
4th July 2012, 08:09 PM #13
I spoke to Geoff Perry the prooduct manager today about the Behaviour improvements that are due in the autumn release. A lot of change requests have been implemented but not a full audit trail. However the person that created the incident is automatically recorded and there are new permissions to prevent ordinary users from changing content.
By sidewinder in forum Mac
Last Post: 3rd October 2011, 06:33 PM
By oxide54 in forum MIS Systems
Last Post: 21st December 2010, 08:59 PM
By jonny_2010 in forum Windows
Last Post: 6th September 2010, 06:17 PM
By mhchs in forum Windows Server 2000/2003
Last Post: 12th May 2010, 01:56 PM
By keogk in forum Virtual Learning Platforms
Last Post: 4th September 2009, 06:07 PM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)