Page Comparison

An EDA (Enhanced Desktop Access) account is a local (non-domain) administrative account intended for users who require access to perform admin tasks.

Please note that you cannot log in to your computer using this account. It is meant to be used with the Windows UAC (User Account Control) prompt as shown in the instructions.

EDA User Check List

• EDA is primarily intended for installation of academic applications
• IT staff will continue to provide management of the desktop computer
  1. EDA users should not modify managed software without consulting with IT staff
  2. EDA users should not modify security settings on the computer  without consulting with IT staff
     1. Examples:
        1. Anti-virus
        2. Operating System/Application patching
        3. Firewall settings
  3. EDA users should inform IT staff when making configuration changes
  4. EDA users should not create local accounts or modify existing accounts

• The EDA user is responsible for licensing any applications installed with EDA
• Do not share EDA account and password with anyone
• Typical EDA user support will be done through the users account by IT staff, via UAC and the local administrator account
• IT staff will be monitoring more closely the operation of computers configured with EDA
  1. Process launched from EDA access
  2. Applications installed
  3. Changes to security settings/applications
  4. EDA users will receive information about EDA use via email
• Due to heightened security concerns, ITS mandates that IT staff review and remediate incidents that occur in violation of the agreement.  Remediation may include loss of EDA privileges.
• Similar to standard desktops and laptops, EDA computers are not backed up, so any data stored locally is unprotected from loss

EDA items of understanding

1. IT personnel will not be responsible for restoring the computer to a configuration customized by the user. In the event of a computer failure or replacement, the computer will be restored to a default configuration or original setup. Data stored only on the computer is not backed up or protected from loss.
2. The computer will continue to be subject to domain polices and the automated deployment of Operating System patches, application patches, and antivirus updates that are managed by SU IT staff. The elevated user must not block or disable the functioning of the computer's domain membership.
3. If a security incident is detected or is reported on an EDA computer, users involved may lose access to computing systems while the incident is investigated.
4. Enhanced Desktop Access privileges can be removed due to non-compliance with SU computing polices and or the failure to adhere to the restrictions and responsibilities laid out in the EDA Guide.