[Campus Notice] Multi-Factor Authentication Now Required for Campus VPN

UCR Information Technology Solutions tech-bulletin at lists.ucr.edu
Wed Dec 6 11:17:18 PST 2023 

Dear UCR Emeritus,

In response to a recent security event which was magnified due to a lack of
required multi-factor authentication in some areas, effective immediately
multi-factor authentication is required to access the campus virtual
private network. This change is required to enforce the level of security
required to protect campus users and data.

What is MFA?
Multi-factor authentication (MFA) is a security process that requires more
than one method of verifying your identity before granting access to a
system, account, or application. Instead of relying solely on a password,
MFA adds an extra layer of protection by using an additional authentication
method, such as a push notification sent to your personal mobile device.

MFA makes it more difficult for unauthorized users to gain access, even if
they manage to obtain one of the factors (like a password). This is
critical for protecting sensitive information, such as personal financial
data and UCR research data.

What is the VPN?
A virtual private network (VPN) is like a secure and private tunnel on the
internet. When you use a VPN, your internet connection is encrypted and
your data travels through a secure server before reaching its destination.
UCR requires the use of the campus VPN, GlobalProtect, to access certain
secure UCR resources.

What does this mean for me?
If you have not yet configured MFA for your UCR NetID account and need to
access the campus VPN, you will need to call the ITS BearHelp at
951-827-4848 during normal business hours (Monday through Friday from 8 AM
to 5 PM) to request that BearHelp enable MFA for your account. Once MFA has
been enabled and you have completed the enrollment process for your
account, you will need to verify your identity using MFA when logging into
any secure UCR resource, including VPN.

If you do not need to use the campus GlobalProtect VPN, please disregard
this message.

Important reminder: If you are no longer able to access your UCR account,
including after setting up MFA, report it immediately to abuse at ucr.edu. For
other IT assistance, you can submit an IT support ticket
<https://ucrsupport.service-now.com/ucr_portal?id=ucr_home_new&logged_in=false>
at any time at its.ucr.edu/support.

Thank you for your understanding of the University’s commitment to
information security.

Sincerely,

Dewight Kramer

Chief Information Security Officer

Information Technology Solutions

University of California, Riverside

ITS.UCR.EDU <https://its.ucr.edu/>




*Please Note: This email account is not monitored by ITS staff. If you
require technical support, please take one of the following actions:*

   - Visit the ITS website at its.ucr.edu to find self-help articles,
   submit and track support tickets, request IT services, and more.
   - For live support, you can contact the BearHelp helpdesk during normal
   business hours (M-F, 8am-5pm) at 951-827-4848
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ucr.edu/pipermail/tech-bulletin/attachments/20231206/a0382031/attachment-0001.html>

More information about the Tech-Bulletin mailing list