NC Cardinal Support and Staff Education
  • Home
  • Submit a Request
  • Check on a Request
  • Knowledge Books
    • About NC Cardinal
    • Acquisitions in Evergreen
    • Administration Manual for Libraries
    • Cataloging in NC Cardinal
    • Circulation in Evergreen
    • Evergreen Upgrades
    • Libraries Migrating into NC Cardinal
    • Serials in Evergreen
    • Offline Transactions
    • Reports in Evergreen
    • Resource Sharing
    • Student Access Initiative
    • Summon Documentation
    • Troubleshooting in Evergreen
Powered by HelpSpot

Home → About NC Cardinal → Policies → Staff Login Accounts and Permission Policies

1.5. Staff Login Accounts and Permission Policies


Staff Login Accounts and Permission Policies

  • Cataloging and administrative staff login accounts shall be assigned to individual users, who are responsible for activities using that login to ensure compliance with all consortium policies. NC Cardinal libraries can retain generic circulation staff login accounts. Generic accounts currently in use for reporting will be transferred to a “reports only” permission group.

  • Each library system shall have a local administrator who is responsible for maintaining staff user login accounts in consultation with their library director and State Library NC Cardinal staff, creating accounts for new library staff and updating, merging, and deleting staff login accounts as necessary to keep employee access current and in compliance with all NC Cardinal policies.

  • Staff user login accounts are to be used only for access to Evergreen and work related activities, not to circulate materials or any other personal use.

Passed by the Governance Committee April 2017 

 

Staff Login Account Password Requirements

In an effort to protect access to patron data, NC Cardinal is implementing a standard for password strength. Cardinal staff login accounts users will be required to change their password every 90 days. Staff will be emailed two weeks before accounts expire. If passwords are not changed by the end of the 90 days, a notification message will appear in the staff client upon login to indicate the account has an old password and a link to where it may be changed. This message will only disappear when the password is updated. Staff accounts will need to have an email address listed on the account for notification purposes. 

(At a later phase of the project we will implement the following password strength requirements)

Staff password strength requirements

  • Upper case letter
  • Lower case letter
  • Numeric character
  • At least 8 characters
  • Special character
    • ^(?=.*[a-z])(?=.*[A-Z])(?=.*\d).{8,32}$
  • No common dictionary words

Passed by the Governance Committee February 2022 

 

Knowledge Tags
System Login Access Manager  /  policy  /  login  /  account  / 

This page was: Helpful | Not Helpful