Have you looked at:

Lissa Explains it All -- HTML Help and Tutorial for Kids

http://www.lissaexplains.com/

(not just for kids...)

Generally people have to go to a "background check company" and get fingerprinted. The fingerprinting aspect is crucial to find out if the person has any recorded criminal offenses, especially if it involves children. Simply looking someone up online does not tell you much. Check with local organizations, especially those that work with youth (maybe the YMCA?), and see who they use to do background checks. Either let them know who you are or pretend to be a volunteer and find out where you would have to go to get a background check. Hope this helps a little!

I ran into the same sort of questions as we are helping with a mentoring program here. The volunteers are doing some work with the YMCA who requires them to be fingerprinted (they call it "livescan") and also receive a TB test. I guess for the fingerprinting you would need to find a local place in your area, the Y here does it on their own I believe. I did some research for the TB tests and found out that the county does offer free and/or low costs TB screenings, so your city might as well. As far as a real "background" check, such as criminal history and what-not, I believe that the state or city website has a lot of that information or else they give information to websites like SafetyNet and Meagan's Law. Hope that helps at least a little!

Greetings,

 I'm actually in the process of going through the whole background check process for the YMCA (for the same program that Corey mentioned in her comment).  I haven't actually physically gone in yet, so I can't tell you exactly how it's done, but my next step is to go in for  "Live Scan Service," which will include fingerprinting.  The Y here uses Identix Identification Services to conduct their background checks.  You may want to check out their website to see what sort of information they have there, although I can't make any promises as to how useful it may be as I haven't visited it myself.  Their website is www.identix.com.  Good luck and hope it helps!

Thanks all for your helpful comments. I hope I can be so helpful in the future.

Peace,

Richard

I just went throught the same process. Go to the DCFS website for the state you are working in and they will tell you what you need, as well as give suggestions of places you can try. I've also found other organizations that work with children in your area, with whom your NPO might be friendly with generally give good advice.

Good luck,

Laura

...i will take a shot at this since no one else has yet even though i am far from an expert on this. i assume your computers are running windows.

as for requiring users to login and logout, you could just make the only account on each computer have a password and then share that account info with your users. unfortunately that will not allow you to track who is logging in.

the only decent way i can think of to track who logs in involves giving everyone their own usernames so that you can tell who has logged on by the username. if you want each user to be able to use any computer, you will need to set up a server computer which will store the account info (and it could keep records of users logging in and out - see http://msmvps.com/blogs/kwsupport/archive/2005/02/24/36942.aspx ) and then when a user tries to login to a computer their request will go through the server. (unless you only have a few users and can manually make each of them an account on each computer they might use. or unless you decide to assign users to particular computers. and in those cases i am not sure how user logon/offs could be tracked but i bet there is a way.)

to prevent users from accessing certain controls and settings you could make the accounts they use non-administrator accounts. that may or may not be enough control for you. if not, there are software programs that can be used to block access to certain things but i only know about them from having used computers with these programs on them.

if you have separate user accounts on a server, one way to return the computers to their original settings is to have logoff scripts that erase files, undo changes etc. or you could use the server to reset their profile to a clean one at each login.

good luck and let us know how this goes.

Hi Andrea,

I too am useless in this area, but deep in my consciousness comes out the term "workstation protection management" and the software Deep Freeze, which might do what you need.

Also, this sounds like a very tech assistance to np question, so maybe hit up Aliya, VISTA leader for that priority area.

Also, check out Tech Soup, especially the Network section or this article "Securing Public Access PCs Without Shutting Out Users"

-Danielle

I think Cheryl summed it up pretty well: usernames and passwords.

Are your workstations Windows-based? Mac-based? Linux-based? A mixture? Setting up usernames and passwords is slightly different with each. I'm guessing that you'd like a particular user to be able to log into any workstation she chooses with the same username and password. This requires a centralized username/password database.

In the Windows world, this means having one machine act as a primary domain controller. You can do this with WIndows 2000 server, Windows 2003 server, or a Linux-based Samba server. You configure all workstations to grab their username/password info from the server. All logins and logouts are monitored by the server, and should give you all the information you could ever want (username, IP address, WINS/DNS address, times, etc.).

Unix machines (Macs included) use a different sort of password database, but they can still be configured to get information from a Windows server.

As far as access control to various programs, Cheryl's again right about "administrator" access. Actually, Windows 2000 and newer have several groups to which you can add users. They're called:

System Operators, Replicators, Guests, Power Users, Print Operators, Administrators, Account Operators, Backup Operators, Users.

You can add usernames to each of these groups (to more than one group, even), and that will give them basic permissions. You'll probably want to keep things simple and mainly use the Administrators and Users groups. Everyone in the Administrators group will have full power over all systems.

As far as access control to different programs, I'm no expert, but I assume that this can be done.

As far as saving files, you'll need to decide how much control you're willing to give people. Will they get a "My Documents" folder? Will saved files stick around after logout? Should people be confined only to a USB thumb drive or CD drive? You most likely do not want to allow people to execute files from these sources, though. If you can quickly restore a computer, this may not be such an issue for you. Logout scripts can be of service in restoring settings.

Accessing the Internet: What services do you want to allow? What is your privacy policy going to be? Do you monitor network traffic? Do your workstations have public IP addresses, or do you use Network Address Translation (NAT) and private IP numbers? A proxy server would be a good way to monitor network traffic, but it brings along the headaches of having to configure web browsers, e-mail clients, IM clients, etc. If you're using NAT, and your server logs diligently, you'll know at what time a given computer is accessing a given service (website, IM, e-mail, etc.).

Good luck and let us know how it's going!

--John