Application Access Controls

Introduction

The guides below cover application access controls. To see access control security standards for endpoint devices and servers, see the documentation on endpoint and server access control.

At Virginia Tech, there are three requirements for all applications:

1. Review existing application accounts and privileges at least annually.
2. Enforce Virginia Tech Password Rules within applications.
3. Require Duo 2-factor authentication for application users. See the Application 2-Factor Authentication documentation for more information.

Procedure

To change application passwords, consult the appropriate guide below.

• Apache
• mongoDB
• mySQL
• Postgresql

Resources

• Application 2-Factor Authentication
• Virginia Tech Password Rules