Educause Security Discussion mailing list archives
Re: Seeking insights on Two-factor Authentication roll-out from those who implemented at their campuses
From: Nick Lewis <nlewis () INTERNET2 EDU>
Date: Wed, 3 Jun 2015 12:48:03 +0000
Hi Tom, In case you¹re not aware, InCommon/Internet2 convened a group of campuses to work on many of these same questions as part of a NSTIC grant in 2013/2014. The supporting documentation can be found at: https://wiki.cohortium.internet2.edu/confluence/display/mfacohortium/Home One of the documents developed addresses some of your question around deployment strategies for two-factor authentication: https://spaces.internet2.edu/display/mfacohortium/Enterprise+Deployment+Str ategies+for+Multi-Factor+Authentication There were a couple presentations at the recent Educause Security Professionals Conference about campus experiences deploying Duo that might help: http://www.educause.edu/events/security-professionals-conference/2015/0-340 00-multifactor-users-six-months http://www.educause.edu/events/security-professionals-conference/2015/break ing-ubiquitous-two-factor-barrier I am the new program manager at Internet2 in the NET+ program working on security and identity providers working with Duo. Let me know if you¹d like more information. Thanks, Nick Nick Lewis NET+ Program Manager, Security and Identity Internet2 nlewis () internet2 edu On 6/2/15, 1:54 PM, "Thomas Skill" <tskill1 () UDAYTON EDU> wrote:
Colleagues, At the University of Dayton, we are in the active planning stages for the deployment of Two-Factor Authentication. We¹re very interested in hearing from campuses that have deployed two-factor authentication on the following questions: 1. What provider did you select (Duo, Vasco, others)? 2. Did you implement two-factor across all systems or just selected systems? 3. If you are using a hosted email solution (such as Google Apps or Office 365), did you include that in your two-factor roll-out? 4. Did you include all faculty and staff or just selected users? 5. Did you include students or allow for ³student opt-in?² 6. For ongoing two-factor administration, what level of staffing has it required? 7. Based on your roll-out experience, what key bit of advice might you offer to those of us considering this move? My apologies for cross-posting this request - I shared this with the CIO list earlier with limited responses. Valerie Vogel from Educause suggested that this list might be a better fit! Thanks Tom Skill Thomas Skill, Ph.D. Associate Provost & CIO Professor of Communication Office (937) 229-3511 Fax (937) 229-4044 eMail: skill () udayton edu <mailto:tskill1 () udayton edu> Twitter: @skilltd <https://twitter.com/skilltd> Linkedin: http://www.linkedin.com/in/skilltd UDit University of Dayton 300 College Park Dayton, OH 45469-2230
Current thread:
- Seeking insights on Two-factor Authentication roll-out from those who implemented at their campuses Thomas Skill (Jun 02)
- Re: Seeking insights on Two-factor Authentication roll-out from those who implemented at their campuses Dunker, Mary (Jun 02)
- Re: Seeking insights on Two-factor Authentication roll-out from those who implemented at their campuses Thomas Skill (Jun 03)
- Message not available
- Re: Seeking insights on Two-factor Authentication roll-out from those who implemented at their campuses Dunker, Mary (Jun 02)
- Re: Seeking insights on Two-factor Authentication roll-out from those who implemented at their campuses Brad Judy (Jun 02)
- Re: Seeking insights on Two-factor Authentication roll-out from those who implemented at their campuses Nick Lewis (Jun 03)