NB_270_21_5 - NB 270-21-5 IRM – Annual Review of All Enterprise Active Directory (EAD) User Accounts
NB 270-21-5 IRM – Annual Review of All Enterprise Active Directory (EAD) User Accounts
National Bulletin: 270-21-5  Date: August 23, 2021 
Subject: IRM – Annual Review of All Enterprise Active Directory (EAD) User Accounts 


Action Required By:   September 24, 2021
 
Purpose.   Annual review of all EAD user accounts.      
 
Expiration Date.   September 30, 2021  
 
Background.   The Federal Information Security Modernization Act and USDA security and compliance policies require an annual review of all EAD user accounts. This review ensures that every account is needed and that those that are no longer needed are removed with a delete IRM-03/System Authorization Access Request (SAAR) ticket submitted by Information System Security Points of Contact (ISSPOC).        
 

Explanation.   This guidance establishes action items to be completed. Information Solutions Division has prepared an Excel file for each State with EAD accounts that need to be verified or removed. The information in this file was pulled on May 24, 2021, so SAAR delete tickets submitted after this date are not reflected in the file. ISSPOCs may go https://usdagcc.sharepoint.com/sites/FBC-IAB/isspoc/Shared%20Documents/Forms/AllItems.aspx?csf=1&web=1&e=OtBfWl&cid=0ce3a218%2D61b2%2D4ef0%2D9e9e%2D85f1b413b041&RootFolder=%2Fsites%2FFBC%2DIAB%2Fisspoc%2FShared%20Documents%2FFY21%2DAnnual%2DEAD%2DRecertification&FolderCTID=0x0120006DF390261E423F408D64E96F6E0B6F97 and download their State’s spreadsheet. Each State must complete the following steps:

• Column K, “Remedy Ticket Number” is optional – ISSPOC can enter the delete ticket number.
• Column L “Not My Jurisdiction Location” is required – If the EAD account is part of your State, please put “Yes.” If the person is not part of your State, they may be part of National Headquarters (NHQ), so put “No.” The “No” accounts will be reviewed by NHQ.
• Column M “ISSPOC Notes” is required – Make a note about whether the account should be kept, removed, or that a SAAR has been entered to delete. For example—

o    Keep, this person was a Pathways intern who has returned to school.

o    Needs Removed, this person was a contractor who has resigned.

o    A delete SAAR has been submitted to remove this EAD.

 

Note: For the EAD accounts that need to be removed, State ISSPOC must submit a delete SAAR. When submitting the delete SAAR ticket, if the account is not in Remedy, include “Not in Remedy” in column M so that NHQ can submit the delete request. 

• Cell B2 “Print Reviewer Name” is required – Put the name of the person who completed the review.
• Cell B3 “Date” is required – put in the date you completed the spreadsheet. 

Email the completed Excel file to jeremy.bennett@usda.gov.

 

The Excel file will be stored in the ISSPOC SharePoint and emailed to State conservationists, assistant State conservationists for management and strategy, and ISSPOCs.

 
Contact.   Questions can be sent to jeremy.bennett@usda.gov, (202) 720-0244.     
 
 

 /s/

LOUIS ASPEY
Deputy Chief for Management and Strategy    
 
 
 
[NB_270_21_5 - ]