Options for Page and Asset Protection

SUNet ID protection in AEM

The ability for authors to protect AEM pages with SUNetID will move to a request only model in Fall 2021. Pages protected by SUNet ID prior to this change will remain protected by SUNet ID.

When possible, authors are strongly encourated to utilize alternative applications such as Stanford Medicine Box or MedWiki to publish protected content. Both of these options enable permissions to be set so that content is viewable by all users with a SUNet ID, or, limited to individual viewers or groups. MedWiki has a robust search function and is well suited for groups. 

Considerations for protecting content 

Carefully assess the content that you wish to protect. First, determine if the content truly needs to be protected, and if it does, define your audience. Please consider that on AEM, protected information will be available to anyone with a SUNetID, not just those in your department/division.  NOTE: PHI and PII information is to never be posted on a Stanford Medicine front end AEM website. All types of Moderate and Low risk data are acceptable for protection on your site. For guidance about data classification storage requirements please see the data classification guide.

Guidelines for considering if SUNet ID is appropriate:

  • Is the content publicly available on other Stanford websites? If so, why do you wish to protect the information on your site?
  • Who is your intended audience? If your audience is limited to a group, department, or lab, consider a Wiki. 
  • Are you protecting documents or the AEM page? You can protect documents in Box and leave AEM pages that reference documents unprotected.
     

Types of content that authors may wish to protect

  • Contact information
  • Documentation
  • Procedures
  • Policies
  • Applications
  • Forms
  •