Virginia Tech® home

Application Access Controls


The guides below cover application access controls. To see access control security standards for endpoint devices and servers, see the documentation on endpoint and server access control.

At Virginia Tech, there are three requirements for all applications:

  1. Review existing application accounts and privileges at least annually.
  2. Enforce Virginia Tech Password Rules within applications.
  3. Require Duo 2-factor authentication for application users. See the Application 2-Factor Authentication documentation for more information.


To change application passwords, consult the appropriate guide below.