End-of-Life and Out-of-Support Operating Systems

Description

This article addresses the acceptable operating systems and the end of life and out of support operating systems process for CSU-owned and personal devices.

Consistent with the CSU IT Security Policy, devices used to access CSU resources — whether CSU-owed or personally owned — are required to use software that is supported by the vendor and patched against vulnerabilities. Importantly, this includes the operating system (OS) running the device (Windows, macOS, etc.). This requirement applies to the CSU network, as well as remotely accessing CSU resources via the VPN (gateway.colostate.edu).

Continued use of non-supported operating systems puts the university and our devices at increased risk of compromise. Allowing compromised machines to connect to the CSU network — even through a secure, authenticated service — puts CSU’s network at risk. Continued use of older, non-supported OS on your devices may also make your machine more vulnerable to viruses and other security risks, and it will likely not be compatible with the latest hardware and software releases by other manufacturers.

Acceptable Operating Systems

A list of acceptable operating systems is included on the list of Minimum Technology Standards.

Exceptions

For any exception to the CSU IT Security Policy, work with your IT departmental IT staff to submit an exception request for consideration.