...
Identity and Access Management is based on the following principles:
• Identity: Every person who is a student, employee or affiliate of the University is assigned a unique online identity (PIN, Albany ID and NetID). A password is established by the individual for the purpose of authenticating to their assigned identity. PINS and passwords are confidential and must not be shared with anyone.
• Role: An individual’s role (e.g. student, faculty, staff, etc.) at the University governs their access to online services.
• Status: The establishment, continuation and discontinuation of access will be based on an individual’s status at the University (e.g. employed, terminated, registered, alumni, etc.)
• Access: Access to online services is granted based on the ‘least privilege’ principle (see ‘Access Control Security Domain’ in the Information Security Domains, Supporting Protocols and Procedures as dictated by the University’s Information Security Policy).
...