Usage Configuration Checklist
Blackboard LMS System Administrators can configure various settings in the application to further tighten security for their institution.
User Account Settings
To protect user accounts from unauthorized access, you can configure login attempt thresholds, specify the maximum number of failed attempts permitted, session settings for expiry for active and inactive settings, and concurrent session control, more details can be found on our 帐户锁定 topic
Tighten Access Control
Role Based Access Control (RBAC) is a security model that restricts system access to authorized users based on their assigned roles within an institution. Administrators can ensure users only access resources necessary for their specific role by managing privileges. Visit Access Control to learn more about managing privileges.
Clean Up of Administrators
Administrators have the highest privileges in the Blackboard LMS system. Keeping the user list up to date at all times is key to ensuring only authorized users are accessing the system. You can easily find the list of users with system role privileges using Search for Users by System Role to curate the list.
Secure Content System Permissions (ACLs)
The course/org home folders should not have student, public or all-user permissions; and should not have permissions assigned to Institution Roles that students are in. This is not needed for the correct behavior of the system which grants access based on course membership and content availability through a special system-managed API.
For other areas such as institution folders, manage access using Institution Roles instead of assigning access to specific users.
Configure alternate domain for serving content
Setting up an alternative domain for serving static content is a recommended configuration for all sites. It is also required for certain features in Ultra courses.