The purpose of this standard is to set a minimum standard for protecting our computers with password protected screen savers. The screen saver logs out an active user after a set amount of time with no activity. By requiring a user to sign in when they return, it minimizes the risk of an unauthorized person using an active session while the authorized user is away. A password-enabled screen saver helps to protect the information displayed on your screen, stored on your computer's hard drive, and the information that is accessible from your computer when you walk away from the computer.
All computers shall be configured to have a password-enabled screen saver. This security lockout feature shall automatically initiate after the computer remains idle from user interaction after a predefined time period. The user must then reenter their password to gain access to the computer. The general best practice for enabling automatic lockout of a screen saver is to set the timeout so that it can provide adequate security and not be inconvenient to the user.
Any exceptions to this policy must be submitted in writing with a business justification, to and approved by the Computer Security Officer at firstname.lastname@example.org or by placing a helpdesk ticket http://helpdesk.troy.edu
Information Technology has a set the standard for screen lock out which is 10 minutes. After 10 minutes of no activity, the screen saver will be invoked.
For Windows: You can press the Windows key (ÿ) and L keys simultaneously on most keyboards to enable the screen saver. On other keyboards you will need to press Control-Alt-Delete and select "lock computer."