We do allow remote access but not through a Terminal server but traditional VPN. However all VPN access is secured through 2 Factor Authentication reducing the risk of compromised credentials being an issue. However since we are still using TMS which doesn't have a web client even the remote PC needs to have had the thick application installed on it, thus reducing the potential risk a bit as well. Mainly since someone would have installed the application and known the configurations settings for our TMS environment.
James ------------------ James J. Heck Director of Technology [email protected] Single number reach: +1 212 708 9554 Trying to schedule a meeting with me? Check my availability here <https://www.google.com/calendar/[email protected]&mode=week&ctz=America/New_York&&title=James%20Heck%20%28MoMA%20Calendar%20-%20Eastern%20Time%20Zone%29> ! On Thu, Feb 23, 2017 at 4:56 PM, Boyce Tankersley < [email protected]> wrote: > Hi Rob: > > The issue we ran into related to an infected computer at home that > 'shared' with the institutional server when they remotely accessed the > databases. > > Boyce Tankersley > Chicago Botanic Garden > > -----Original Message----- > From: [email protected] [mailto:[email protected]] On Behalf Of > Rob Morgan > Sent: Thursday, February 23, 2017 2:18 PM > To: [email protected] > Subject: [MCN-L] Collections Database Remote Access Policies > > Hello MCN Listserv, > > > > Does your institution allow remote access to your collections database? > For example, can a Curator check your collections database from home via a > Remote Desktop Connection/Terminal Server, or something similar? > > > > If so, does your institution have a policy in place regarding remote > access to your collections database? If so, can you share it with me? > > > > FYI, we allow remote access to our collections database. However, there > is concern about losing control over who can see sensitive information > (e.g., values, locations, etc.) when the database is accessed outside the > museum (e.g., a non-employee could see sensitive data in an employee’s > home). Of course, the argument is that staff should be trusted regardless > of where they’re working. > > > > Thanks, > > Rob Morgan > > Collections Database Administrator > > The Baltimore Museum of Art > > > P.S. Sorry for any cross-listing > _______________________________________________ > You are currently subscribed to mcn-l, the listserv of the Museum Computer > Network (http://www.mcn.edu) > > To post to this list, send messages to: [email protected] > > To unsubscribe or change mcn-l delivery options visit: > http://mcn.edu/mailman/listinfo/mcn-l > > The MCN-L archives can be found at: > http://www.mail-archive.com/[email protected]/ >
_______________________________________________ You are currently subscribed to mcn-l, the listserv of the Museum Computer Network (http://www.mcn.edu) To post to this list, send messages to: [email protected] To unsubscribe or change mcn-l delivery options visit: http://mcn.edu/mailman/listinfo/mcn-l The MCN-L archives can be found at: http://www.mail-archive.com/[email protected]/
