Quick Start
Available to: Students, Faculty, Researchers, Staff, Departments, Alumni, Prospective Students, New/Incoming Students, Guests, IT Professionals
Cost: No charge
- See Getting Started, below.
Authorization Services grant or deny access to a Boston University resource based on a client’s identity. Authorization Services work with Identity Services (who you are), Authentication Services (validating you are who you say you are) and access control to provide you with the appropriate level of access.
Your identity is usually established by your BUID or your BU login name. When you log in to a system, you present your BU login name and password to Authentication Services to confirm who you are. Once your identity has been established, Authorization Services then grant or deny access and privileges as appropriate.
Authorization can also be based on affiliation and/or business function. For example, access can be system based (e.g., BUworks/SAP, Mainframe, the Links). Systems such as the Mainframe and SAP have a custom authorization workflow for access requests and approvals. Currently, a majority of authorization requests go through the ServiceNow ticketing system. Applications such as our Privileged Account Management (PAM) solution allow us to grant and audit privileged access to Boston University services.
Benefits
Authorization Services implement controls (defined by policy) to grant or deny access to Boston University resources. By protecting against unauthorized access, these controls help protect the integrity of our systems and confidentiality of sensitive information, and help keep us in compliance with federal, state, and other regulations.
Key Features
- Requires access approval and provides accountability
- Protects computational and information resources against unauthorized access
- Assists BU in complying with University policies and federal, state, and other regulations
- Grant access to clients only for applications/systems that they have authorization for
What to Expect
This service normally will be available 24 by 7 except for standard change windows, as described in IS&T’s standard policies, procedures, and schedules for making changes
Requirements
None
Getting Started
- Contact your Departmental Security Administrator (DSA) for access to BUworks or the Mainframe. If you do not know who your DSA is, submit a ticket at www.bu.edu/help/tech/security/ or email buinfosec@bu.edu.
- Contact us regarding any other requests for access.
- Learn more about How to Request Authorizing Access for IS&T Systems
- Learn more about BU Information Security Policy and Guides.