Social media management goes beyond creating content. Keeping your official UB accounts secure, and ensuring proper protocols are in place to maintain authorized access, are among the most important aspects of account ownership.
Follow the guidance below to safeguard and strengthen your unit or department’s social media accounts, as well as understand what to do in the event your account is compromised or access/credentials are lost:
All official UB accounts must have two employees serve as primary account administrators (one owner and one back-up). Whenever possible, adding a third employee admin as additional back-up is recommended to ensure account access is retained in the event faculty or staff leave service.
Departments should consider adding their Unit Social Media Lead as one of the back-up admins and/or provide access to login credentials to strengthen security.
Unit Social Media Leads should consider adding their Senior Communicator as one of the back-up admins and/or provide access to login credentials to strengthen security.
Students who create content or otherwise assist with social media management can have access to official UB accounts, but cannot serve as one of the primary admins. Additionally, where applicable, it is recommended that students are not provided with full account access/ownership; partial or task access is preferred.
Use a shared buffalo.edu email address to create and manage official UB accounts, whenever possible. If you do not have access to a shared email address for your department or unit, contact UBIT to request one.
Be sure that at least two faculty or staff members have access to any shared email address associated with an official account.
Channel Considerations:
All Unit Social Media Leads are strongly encouraged to create a Meta Business Manager account for their unit and invite their portfolio of Facebook and Instagram accounts to join the business.
This will not only help ensure you retain access to unit and departmental accounts, but will also allow page owners to provide admin access via employees’ individual buffalo.edu email addresses, rather than rely on and utilize personal account credentials.
Business Manager accounts must have two employees serve as primary admins, following the guidance detailed above.
When creating a password for an official account, be sure to:
Finally, account passwords and credentials should be stored in a secure, centralized location (e.g. Box, Teams), and shared with your primary account admins.
Regular reviews of account credentials and admins are imperative to ensuring security.
Primary account admins should review and update the following information annually for all official UB accounts:
In addition to performing annual account audits, anytime an admin of an official account leaves service or no longer requires access (including students who contribute to the account), be sure complete the following steps:
To further enhance security, it is strongly recommended that multi-factor authentication is enabled on ALL applicable UB social media accounts.
Review the list of channel-specific resources for detailed instructions.
Employees managing official accounts on platforms that require individual access (e.g. Facebook, LinkedIn) are strongly encouraged to enable multi-factor authentication on their personal accounts as added protection.
Follow UBIT instructions to utilize Duo for multi-factor authentication.
If you use a mobile device to manage your official UB social media accounts, consider taking the following steps to enhance security:
In addition to the guidance detailed above, follow best practices and utilize the specific features available on each social network, as follows:
If you experience issues logging into your official UB account, use the resources below to regain access.
Note: If you are unable to regain access to your account using these resources, or suspect that an account has been compromised, contact University Communications in addition to reporting the issue to the channel:
For additional tips on staying safe on social media, review UBIT’s guidance.