<div dir="ltr"><div dir="ltr"><span id="gmail-docs-internal-guid-0e688744-7fff-67ff-e7a4-f2385a7bcaf9"><h3 dir="ltr" style="line-height:1.38;margin-top:10pt;margin-bottom:4pt"><span style="font-size:14pt;font-family:Roboto,sans-serif;color:rgb(0,61,165);background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">Key Takeaways:</span></h3><ul style="margin-top:0px;margin-bottom:0px"><li dir="ltr" style="list-style-type:disc;font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:10pt;margin-bottom:10pt" role="presentation"><span style="font-size:11pt;background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">Beginning December 2024, multi-factor authentication (MFA) will be required on an ORG unit email account you own/manage to help ensure UCR meets new </span><a href="https://its.ucr.edu/cybersecurity-mandate-2025" style="text-decoration-line:none"><span style="font-size:11pt;background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;text-decoration-line:underline;vertical-align:baseline">UC information security requirements</span></a><span style="font-size:11pt;background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline"> by the deadline, as mandated by the UC President.</span></p></li><li dir="ltr" style="list-style-type:disc;font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:10pt" role="presentation"><span style="font-size:11pt;background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">Anyone who accesses your ORG’s shared email account will be required to authenticate their login via MFA, similar to how you access your individual UCR email account.</span></p></li><li dir="ltr" style="list-style-type:disc;font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:10pt" role="presentation"><span style="font-size:11pt;background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">If you use the ORG unit email account to log into any other services (e.g., Zoom), please note that you will be required to authenticate via MFA after the change. </span></p></li><li dir="ltr" style="list-style-type:disc;font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:10pt" role="presentation"><span style="font-size:11pt;background-color:transparent;font-weight:700;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">The owner of the ORG unit email account must take action now to ensure the account can continue to be accessed come December 2024.</span><span style="font-size:11pt;background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline"> Additional action may be required of other account users depending on the option selected.</span></p></li></ul><br><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">Dear Highlander,</span></p><br><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">You are receiving this notification because you were identified as an owner or manager of an organizational (ORG) email account at UC Riverside. In direct response to the </span><a href="https://its.ucr.edu/cybersecurity-mandate-2025" style="text-decoration-line:none"><span style="font-size:11pt;font-family:Roboto,sans-serif;background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;text-decoration-line:underline;vertical-align:baseline">UC Cybersecurity Mandate</span></a><span style="font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">, </span><span style="font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-weight:700;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">UCR is further securing its email resources by implementing multi-factor authentication (MFA) on all accounts, including ORG email accounts. This change will commence the first week of December.</span></p><h3 dir="ltr" style="line-height:1.38;margin-top:16pt;margin-bottom:4pt"><span style="font-size:14pt;font-family:Roboto,sans-serif;color:rgb(0,61,165);background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">Action is Required </span></h3><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">In order to continue to access your ORG unit email account come December, </span><span style="font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-weight:700;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">the account owner should take action now</span><span style="font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline"> to make the account compliant. There are two options for compliance: </span></p><br><ul style="margin-top:0px;margin-bottom:0px"><li dir="ltr" style="list-style-type:disc;font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:10pt" role="presentation"><span style="font-size:11pt;background-color:transparent;font-weight:700;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">Option One: Turn your ORG unit email account into a shared department email.</span><span style="font-size:11pt;background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline"> Instead of a singular email account that has one set of password credentials that is shared among team members, a shared email account allows for access delegation so that each team member can use their own individual credentials to access the mailbox. </span></p></li><ul style="margin-top:0px;margin-bottom:0px"><li dir="ltr" style="list-style-type:circle;font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:10pt" role="presentation"><span style="font-size:11pt;background-color:transparent;font-weight:700;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">Considerations:</span><span style="font-size:11pt;background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline"> The benefit of this option is that the team will not need to register multiple devices with the account to access it. The disadvantage of this option is that it will not work if your team uses the account to log into MFA-protected services like Zoom or Google Drive. </span></p></li><li dir="ltr" style="list-style-type:circle;font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:10pt" role="presentation"><span style="font-size:11pt;background-color:transparent;font-weight:700;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">To select this option</span><span style="font-size:11pt;background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">, </span><a href="https://ucrsupport.service-now.com/ucr_portal?id=sc_cat_item&sys_id=b98274261bfe6810609f86e9cd4bcbfd" style="text-decoration-line:none"><span style="font-size:11pt;background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;text-decoration-line:underline;vertical-align:baseline">fill out the request form</span></a><span style="font-size:11pt;background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">. Under “type of request,” select either Office 365 or R’Mail, depending on the email platform you are currently using. Please note in the description that this is to bring the account into MFA compliance.</span></p></li></ul><li dir="ltr" style="list-style-type:disc;font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:10pt;margin-bottom:0pt" role="presentation"><span style="font-size:11pt;background-color:transparent;font-weight:700;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">Option Two: Set up MFA for your ORG’s shared email account.</span><span style="font-size:11pt;background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline"> With this option, those with the account credentials will continue to use those credentials, however, upon login they will be routed to the Duo page and asked to select a device for the MFA verification. This requires each user of the account to have a device connected to the account. </span></p></li><ul style="margin-top:0px;margin-bottom:0px"><li dir="ltr" style="list-style-type:circle;font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:10pt;margin-bottom:0pt" role="presentation"><span style="font-size:11pt;background-color:transparent;font-weight:700;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">Considerations: </span><span style="font-size:11pt;background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">This option should be selected by any teams that require the ability to use the ORG unit account to log into MFA-protected services like Zoom or Google Drive (rather than using their individual UCR accounts). The disadvantage of this option is that every person who needs to access this account must register a device with the account or else they will have no means of authenticating. </span></p></li><li dir="ltr" style="list-style-type:circle;font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:10pt;margin-bottom:0pt" role="presentation"><span style="font-size:11pt;background-color:transparent;font-weight:700;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">To select this option</span><span style="font-size:11pt;background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">, the account owner must </span><a href="https://its.ucr.edu/help" style="text-decoration-line:none"><span style="font-size:11pt;background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;text-decoration-line:underline;vertical-align:baseline">submit a ticket</span></a><span style="font-size:11pt;background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline"> to request MFA be set up for their ORG’s email account. After MFA is enabled, each team member who accesses the account must register a device. </span></p></li></ul></ul><br><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">If you believe you have received this email by mistake because your ORG unit’s email account is already enrolled in MFA, please disregard this message.</span></p><br><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">We appreciate your partnership as UCR strengthens its information security. Implementation of robust MFA on all accounts is one of the key steps in UCR’s security plan to meet the new UC-wide cybersecurity requirements. To learn more about these requirements and the role you play in helping us better protect our campus, please visit the </span><a href="https://its.ucr.edu/cybersecurity-mandate-2025" style="text-decoration-line:none"><span style="font-size:11pt;font-family:Roboto,sans-serif;background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;text-decoration-line:underline;vertical-align:baseline">UC Cybersecurity Mandate 2025 webpage</span></a><span style="font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">. </span></p><br><br><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">Sincerely,</span></p><br><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-weight:700;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">Dewight F. Kramer</span></p><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-style:italic;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">Chief Information Security Officer</span></p><br><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-weight:700;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">Sureyya Tuncel</span></p><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-size:11pt;font-family:Roboto,sans-serif;color:rgb(0,0,0);background-color:transparent;font-style:italic;font-variant-numeric:normal;font-variant-east-asian:normal;font-variant-alternates:normal;vertical-align:baseline">Identity and Access Management Manager</span></p></span></div><div dir="ltr" class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><p dir="ltr" style="color:rgb(34,34,34);line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="background-color:transparent;font-size:7.5pt;font-family:Arial,sans-serif;color:rgb(204,0,0);font-weight:700;vertical-align:baseline"><br></span></p><p dir="ltr" style="color:rgb(34,34,34);line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="background-color:transparent;font-size:7.5pt;font-family:Arial,sans-serif;color:rgb(204,0,0);font-weight:700;vertical-align:baseline"><br></span></p><p dir="ltr" style="color:rgb(34,34,34);line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="background-color:transparent;font-size:7.5pt;font-family:Arial,sans-serif;color:rgb(204,0,0);font-weight:700;vertical-align:baseline"><br></span></p><p dir="ltr" style="color:rgb(34,34,34);line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="background-color:transparent;font-size:7.5pt;font-family:Arial,sans-serif;color:rgb(204,0,0);font-weight:700;vertical-align:baseline"><br></span></p><p dir="ltr" style="color:rgb(34,34,34);line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="background-color:transparent;font-size:7.5pt;font-family:Arial,sans-serif;color:rgb(204,0,0);font-weight:700;vertical-align:baseline">This email account is not monitored by ITS staff. If you require technical support, please take one of the following actions:</span><span style="background-color:transparent;color:rgb(32,33,36);font-size:7.5pt;font-family:Arial,sans-serif;font-weight:700;vertical-align:baseline"> </span></p><p dir="ltr" style="color:rgb(34,34,34);line-height:1.38;margin-top:0pt;margin-bottom:0pt"></p><ul><li><span style="background-color:transparent;font-family:Arial,sans-serif;font-size:7.5pt;color:rgb(32,33,36);vertical-align:baseline">Visit the ITS website at </span><a href="https://its.ucr.edu/" style="background-color:transparent;font-family:Arial,sans-serif;font-size:7.5pt;white-space:pre" target="_blank"><span style="font-size:7.5pt;color:rgb(17,85,204);background-color:transparent;vertical-align:baseline">its.ucr.edu</span></a><span style="background-color:transparent;font-family:Arial,sans-serif;font-size:7.5pt;color:rgb(32,33,36);vertical-align:baseline"> to find self-help articles, submit and track support tickets, request IT services, and more.   </span></li><li><span style="background-color:transparent;font-size:7.5pt;font-family:Arial,sans-serif;color:rgb(32,33,36)">For live support, you can contact the BearHelp helpdesk at 951-827-4848 from Monday to Friday, 8:00am to 5:00pm.</span></li><li><span style="background-color:transparent;color:rgb(32,33,36);font-size:7.5pt;font-family:Arial,sans-serif;vertical-align:baseline">If you suspect you received a phishing email, please report it using </span><a href="https://its.ucr.edu/phishalarm" target="_blank"><span style="font-size:7.5pt;font-family:Arial,sans-serif;color:rgb(17,85,204);background-color:transparent;vertical-align:baseline">PhishAlarm</span></a><span style="background-color:transparent;color:rgb(32,33,36);font-size:7.5pt;font-family:Arial,sans-serif;vertical-align:baseline">.</span></li></ul><p></p></div></div></div>