This workshop is aimed at Moodle admins who already have done some Moodle admin before and want to understand the changes that Moodle 2 brings to the Admin, and how also how to help optimise their Moodle site.
This will be structured as two distinct sessions.
Moodle 2 Admin Workshop 1 (morning session)
The first will be focusing on the new aspects of Moodle 2 covering:
User Management
Enrolment management
Course management
Plugin Management
Backups management
Security
9. Roles
● Avoid changing built in roles
● Remember reset defaults option
● Know what level to apply roles at
– Admin: global
– Course Creator: global, or category
– Student, Teacher: course
● Know what level capabilities work at
● Make new roles by copying most similar existing
role
10. Just-in-Case Model
● Automate user creation, course creation and
enrollments
● Use LDAP auth + external DB enrolment
● Get higher adoption rates from instructors
● Instructor can focus more time on teacher less on
the technology
17. Plug-in Management
● Enforce change management
● Avoid kid-in-candy-store syndrome
● Many plug-ins are poorly written or
abandoned
● Many plug-ins are excellent
22. Security
● Security report
● Use password salts
● User passwords – less secure then
ever
● Don't give web server user write
permissions to Moodle source
23. General Security
● Select Enterprise class OS with long term update
support.
● Automate updates / have set release schedule
● Moodledata outside of web root
● Try mod_sec
● Consider using weekly stable git for Moodle auto
updates
● Consider forced logins
● HTTPS logins
24. More Security
● Consider turning off self registration
● Set the Mysql root user password
● See Moodle Docs Security Page
http://docs.moodle.org/en/Security
25. Hands-on
● Run security report
● Enable force logins
● Show secure logins setting
● Show kpass/last pass password
manager
● Go to Moodle Docs security FAQ