Following on from the advice above, we too only allow access to the network if employees sign up to our Security Policies document. In the first instance, a username and pasword is not supplied by the SysAdmin until they have received a signed copy of the doc from the employee. Thereafter, they have to re-sign every 6 months. Failure to do so within two weeks results in the suspension of their access to the network until a signed declaration is received. To ease this, we allow electronic copies of the document to be circulated (via either email or intranet), but a paper copy of the declaration (one single a4 sheet) must be signed by the user and returned to the SysAdmin. This keeps the paper down to a minimum while comlying with audit requirements.

Cheers all.