All non-State of Alaska owned computer equipment (personal or contractor) attached to the State of Alaska network must meet the state's minimum standards for Anti-Virus Prevention and Management Policy (SP-011) and "Zero Day" intrusion Prevention and Management Policy (SP-012).
Proof of a working and up-to-date virus checking system on the machine is sufficient to meet the requirements of SP-011 (the equipment doesn't have to have our version of Symantec managed on our console). The contractor or individual will be responsible for the cost of any additional software licenses that the department is required to purchase.
Note: The state uses Cisco Security Agent (CSA), for all computers on the SOA network, and uses Symantec Endpoint Protection (SEP) as it's antivirus solution.
The PC hardware and purchasing policy for DOA is Dell optiplex in one of several configurations found on the Purchasing Procedures Page.
The following are department specific standards and follow the appropriate state standard. The baseline build is found on all DOA workstations. Common supported software, database clients and some service software is particular to each business unit. Divisions and business units may not deviate from these standards without an approved waiver from the State Technology Management Council(TMC).
The department identity management or network operating system (NOS) is Microsoft Active Directory on Windows Server 2008 R2. Workstation software will not function properly without your userid and password logon. Workstations are pre-built with a custom department baseline and the appropriate business unit profile (more software) using Symantec Ghost and LANDesk OSD imaging software.
The ongoing running costs of PCs are far higher than the initial purchase price. To reduce overall costs, DOAIT uses a combination of software tools to manage PCs within our department. Our effort is concentrated on security management; configuration, software deployment and updates; fault management, performance and diagnostics and some asset management.
The baseline build software has been tested and modified to include functional and security patches, recent updates and is configured to reduce security vulnerabilities. Installing software from other sources is discouraged and will cause your software or desktop to slowdown or fail.
- Desktop Operating System
- Windows 7 Enterprise
- Network Connectivity
- Active Directory
- Office Productivity suite
- MS Office 2007 or MS Office 2010
- Email & Browser
- Outlook 2007 or Outlook 2010, Internet Explorer/Firefox
- Anti Spam Service
- McAfee SaaS(Enterprise Technology Services)
- Outlook 2007 or 2010 Calendar
- Portable document(s)
- Reader &/or Writer - Adobe Acrobat (current tested version
- Remote Desktop Connectivity
- Virtual Private Network (VPN)
- Cisco VPN (laptop workstation only)
- File Compression
- ZipGenius 6
- MS Visio &/or MS project
- Automated Budget System (ABS) from OMB
- Remote Access
- Windows 7 Remote Desktop Connection/LANDesk
DOAIT helps integrate, troubleshoot and deliver over 200 business unit software packages to desktops but the primary responsibility for troubleshooting and integration lies with the provider of the software. IE. manufacturer, division staff, contractor or other application development staff.
DOAIT will help deliver final, tested software clients to desktops within business units unless it competes with a department standard. In that case, the division or business unit assumes all responsibility for integration, software delivery and technical support. In order for a business unit to use an alternate software in lieu of a department standard, it must obtain an approved waiver from the State Technology Management Council (TMC).
DOA staff may not download, patch, upgrade nor install software to desktops nor network servers without the approval of DOAIT staff. Application development staff within divisions are exempted from these requirements.
The following software may be deleted without notice from PCs or servers during monthly status checks or during troubleshooting incidents. These include any software unrelated to the business unit or department standard software. IE. peer to peer software(KaaZaa), weatherbug, games, webshots, movies, images, etc.
- Any unapproved software which competes against the department standards. IE. Outlook, Firefox, etc.
- Browser Hijacker
- Browser Plugin
- Bundled Software
- Commercial Keylogger
- Commercial Network Management Tools
- Duplicate documents and/or databases(with notice)
- Generic Malware
- Install software programs
- Remote Adminstration Tools
- Trash (weekly deletion of email trash)
The current department Identity management system is the network operating system (NOS), Microsoft Active Directory on Windows Server 2008. All users and workstations must login each day. Workstations must have screen savers enabled. The core services of our NOS consist of authentication, file, print, security, and directory related services such as software delivery including software updates, patching etc.
As a strategy, we follow Liberty Alliance standards for Identity Management and build a common environment for NOS, web and database application services, whenever possible. Although, currently these three areas generally have separate management systems, the evolution of technology and standards has allowed us to make this a realistic goal within the next few years.
The IT managers for each division have determined that the application development platform for the Department of Administration is Java and the database standard is Oracle.
Microsoft Server 2008 R2