This is the multi-page printable view of this section. Click here to print.
Authentication and Authorization
1 - Multi-Factor Authentication (MFA)
- Implementation: Require MFA for educator and admin logins.
- Fallback Options: Provide secure recovery codes or backup procedures.
- User Education: Supply quick tutorials on why MFA is critical.
2 - Authorization Protocols
- Role-Based Access: Align permissions with user roles (e.g., administrator vs. teacher).
- Least Privilege: Default new roles to minimal required permissions.
- Session Expiry: Prompt re-authentication after periods of inactivity.