Guidelines for Securely Configuring your Computers

Please observe the following guidelines for maintaining your computing devices:

1. Keep your computer with the latest patches
     Windows and all software require regular updates. Updates can improve security and reliability of your computing devices.

      1. For Windows 10/11, the default setting is ‘on’ for the auto-update feature to install high-priority updates of Microsoft products.
      2. To manually check and install the latest updates, type “Windows Update” in the search box (next to start menu) to activate the application.  If it shows Updates Available, click “Install Now”. 
      3. Restart your computing device upon the completion of the installation of Windows update.

     For Mac, please find the instruction here.

2. Follow University software standards (Office PC)
     For office PC, observe and follow University Software Standards. Do NOT run or install non-work/study/research/teaching related software such as BitTorrent and µTorrent.

3. Install Anti-virus software
     Download and install an anti-virus software (available through University Campus-wide Software program) via a campus network or CUHK/SSL VPN connection. Another alternate is to enable Microsoft Defender on Windows 10/11 .

4. Set personal firewall
     Installing personal firewall software can help you block hacking and intrusion. Use the default setting of Windows 10/11 already equipped with Windows Defender Firewall for protection.

5. Set strong passwords
     Strong passwords can prevent unauthorized access to your computing device and applications such as e-mail accounts and e-banking accounts by others.  Refer to the Guidelines for setting a strong password for details.

      1. To change your OnePass password, visit https://cai.itsc.cuhk.edu.hk/chgpwd/default.aspx
      2. To change the password of your Windows 10/11 devices (contact your IT support for arrangement on office computers),
        1. Click “Start” > “Settings” > “Accounts”
        2. On left-hand side of the window, click “Sign-in options”
        3. On the right-hand side, click “Password” > “Change”
        4. Enter the current password
        5. Enter the new password twice to complete the change

6. Share Files via Microsoft 365
     Share your files through Microsoft One Drive (personal storage for O365 user)  or SharePoint (cloud storage for office/department).  Staff users can further protect their files using Microsoft Information Protection to allow only authorized person to access.

7. Data Protection
     Refer to The DOs & DON’Ts checklist for protecting your digital data for details.

8. Shut down the computer when it’s not in use, e.g., at the end of your work day.

9. NO Administrative Right Set up for Common User Account in Windows System