State of Alaska

Department of Administration

Division of Administrative Services

Alaska Department of Administration, Administrative Services
Administration >  Administrative Services > IT Support >  Policies and Standards

Policies and Standards

Information Technology in the Department of Administration

Policies

Attaching Non-State Computers to the State's Network.

All non-State of Alaska owned computer equipment (personal or contractor) attached to the State of Alaska network must meet the state's minimum standards for Anti-Virus Prevention and Management Policy (SP-011) and "Zero Day" intrusion Prevention and Management Policy (SP-012).

Proof of a working and up-to-date virus checking system on the machine is sufficient to meet the requirements of SP-011 (the equipment doesn't have to have our version of Symantec managed on our console). The contractor or individual will be responsible for the cost of any additional software licenses that the department is required to purchase.

Note: The state uses Cisco Security Agent (CSA), for all computers on the SOA network, and uses Symantec Endpoint Protection (SEP) as it's antivirus solution.

Revised: 8/8/2012

Standards

Workstations:

General Configuration:

The PC hardware and purchasing policy for DOA is Dell optiplex in one of several configurations found on the Purchasing Procedures Page.

The following are department specific standards and follow the appropriate state standard. The baseline build is found on all DOA workstations. Common supported software, database clients and some service software is particular to each business unit. Divisions and business units may not deviate from these standards without an approved waiver from the State Technology Management Council(TMC).

The department identity management or network operating system (NOS) is Microsoft Active Directory on Windows Server 2008 R2. Workstation software will not function properly without your userid and password logon. Workstations are pre-built with a custom department baseline and the appropriate business unit profile (more software) using Symantec Ghost and LANDesk OSD imaging software.

Revised: 8/17/2012

Managing The Desktop:


The ongoing running costs of PCs are far higher than the initial purchase price. To reduce overall costs, DOAIT uses a combination of software tools to manage PCs within our department. Our effort is concentrated on security management; configuration, software deployment and updates; fault management, performance and diagnostics and some asset management.

DOA Baseline Build Common To All Workstations & Users:


The baseline build software has been tested and modified to include functional and security patches, recent updates and is configured to reduce security vulnerabilities. Installing software from other sources is discouraged and will cause your software or desktop to slowdown or fail.

Desktop Operating System
Windows 7 Enterprise
Network Connectivity
Active Directory
Office Productivity suite
MS Office 2007 or MS Office 2010
Email & Browser
Outlook 2007 or Outlook 2010, Internet Explorer/Firefox
Anti Spam Service
McAfee SaaS(Enterprise Technology Services)
Calendaring
Outlook 2007 or 2010 Calendar
Portable document(s)
Reader &/or Writer - Adobe Acrobat (current tested version
Anti-Virus/Malware
McAfee
Remote Desktop Connectivity
LANDesk
Virtual Private Network (VPN)
Cisco VPN (laptop workstation only)
File Compression
ZipGenius 6

Revised 8/17/2012

Software

Common Supported Business Unit Software:

Emulation
Bluezone
Drawing/diagramming/planning
MS Visio &/or MS project
Budget
Automated Budget System (ABS) from OMB
Remote Access
Windows 7 Remote Desktop Connection/LANDesk

Revised 8/8/2012

Specific Business Unit Software:


DOAIT helps integrate, troubleshoot and deliver over 200 business unit software packages to desktops but the primary responsibility for troubleshooting and integration lies with the provider of the software. IE. manufacturer, division staff, contractor or other application development staff.

DOAIT will help deliver final, tested software clients to desktops within business units unless it competes with a department standard. In that case, the division or business unit assumes all responsibility for integration, software delivery and technical support. In order for a business unit to use an alternate software in lieu of a department standard, it must obtain an approved waiver from the State Technology Management Council (TMC).

Revised 8/14/2012

Non Standard Department Or Business Unit Software:


DOA staff may not download, patch, upgrade nor install software to desktops nor network servers without the approval of DOAIT staff. Application development staff within divisions are exempted from these requirements.

The following software may be deleted without notice from PCs or servers during monthly status checks or during troubleshooting incidents. These include any software unrelated to the business unit or department standard software. IE. peer to peer software(KaaZaa), weatherbug, games, webshots, movies, images, etc.

  • Any unapproved software which competes against the department standards. IE. Outlook, Firefox, etc.
  • Adware
  • Browser Hijacker
  • Browser Plugin
  • Bundled Software
  • Commercial Keylogger
  • Commercial Network Management Tools
  • Duplicate documents and/or databases(with notice)
  • Dialers
  • Games
  • Generic Malware
  • Install software programs
  • Remote Adminstration Tools
  • Trash (weekly deletion of email trash)
  • Trojan
  • Virus
  • Worm

Revised 8/8/2012

Other Standards

Identity Management:

The current department Identity management system is the network operating system (NOS), Microsoft Active Directory on Windows Server 2008. All users and workstations must login each day. Workstations must have screen savers enabled. The core services of our NOS consist of authentication, file, print, security, and directory related services such as software delivery including software updates, patching etc.

As a strategy, we follow Liberty Alliance standards for Identity Management and build a common environment for NOS, web and database application services, whenever possible. Although, currently these three areas generally have separate management systems, the evolution of technology and standards has allowed us to make this a realistic goal within the next few years.

Revised 8/8/2012

Application Development And Database:


The IT managers for each division have determined that the application development platform for the Department of Administration is Java and the database standard is Oracle.

Revised 8/8/2012

Servers:

Microsoft Server 2008 R2

Revised 8/8/2012