nd.gov - The Official Portal for North Dakota State Government
North Dakota: Legendary. Follow the trail of legends

Public On-Line Services User Authentication

Policy Code: 
AST003-05.5
Effective Date: 
September 25, 2005
Revision Number: 
5
Revision Date: 
December 15, 2008

Purpose

To enhance customer service by simplifying access to state on-line services.

Standard

  1. New applications that provide authenticated public access to state on-line services shall use a State of North Dakota Login ID.
  2. All applications utilizing the State of North Dakota Login ID shall assign user accounts accessing the application to at least one security group defined within the State of North Dakota Login ID System.  The security group must be defined under the application’s OU within the ou=apps structure within the State of North Dakota Login ID System (Example: ou=licensing,ou=gnf,ou=apps, o=state of north dakota,c=us).
  3. All applications utilizing the State of North Dakota Login ID shall define a textual description of the application in the format of “Agency/Department Name – Application Name” as an attribute to the application’s OU.  The application name will appear on the State of North Dakota Login ID System’s account maintenance page.
  4. All applications utilizing the State of North Dakota Login ID shall define the application as either a Business/Organization (B) or Personal (P) use application as an attribute to the application’s OU (Example: businessCategory=B).
  5. All Personal use applications utilizing the State of North Dakota Login ID shall pass an attribute to the account registration process to identify the user account being created as a Personal use account (businesCategory=P).  This attribute will be utilized to display specific textual content to the registered user based on their registered account type of Personal (P) vs. Business/Organization (B).
  6. All applications utilizing the State of North Dakota Login ID that link individual user accounts to application information shall use the user account’s Globally Unique Identifier (GUID) as the link attribute.

Policy

To allow public access to applicable state on-line services using the same login ID.

Applicability

This standard applies to all executive branch state agencies including the University Systems Office but excluding other higher education institutions, i.e. campuses and agricultural and research centers.

Definition

Application
A software solution that accomplishes one or more business processes.
New Applications
New application software or replacement of existing application software, including all custom developed software, vendor software, and off-the-shelf software. Maintenance to an existing application is not considered new development.
State of North Dakota Login ID
A unique account created by a user via the State of North Dakota Login System (self-registration system).
Public
An entity, including but not limited to citizens, private businesses, non-profit organizations, etc.
Authenticated Public Access
The act of verifying and granting a user access to one or more online services via the same login ID and password.
Globally Unique Identifier (GUID)
A pseudo-random number used in software applications. The State of North Dakota Login System assigns each newly created account a GUID.
OU – Organizational Unit
A container object used to house other objects.
Business/Organization Use Application
Application where users represent a business or an organization. Example: Purchasing a highway trip permit or reporting sales tax, income tax withholding, or wage reporting information for the business/organization.
Personal Use Application
Application where users represent themselves. Example: Purchasing a fishing license or filing an unemployment insurance claim for yourself.

Guidance

  1. The State of North Dakota Login ID satisfies the Level 1 technical requirements of the National Institute of Standards and Technologies (NIST) Electronic Authentication Guideline - Special Publication 800-63 dated September 2004
  2. State of North Dakota Login ID Documentation
  3. Login ID Creation Process Document

Non-Compliance

Non-compliance with this standard shall be reported to the Office of the State Auditor.

Version Control: 
This standard supersedes AST003-05.4

Drafted By

EA Domain Team for Application Software

 

What Our Customers Are Saying

Great people to work with...very helpful and friendly!

Supreme Court
May 3, 2013
 
 

Copyright © 2013 North Dakota Information Technology Department - ITD
Download Adobe Reader to view, print and collaborate on PDF files.