- Performed regression testing of the most recent tag (3.4.6_20200518) of the InCommon Trusted Access Platform (TAPTAP The InCommon Trusted Access Platform (TAP) is an identity and access management suite of software.) Shibboleth Identity Provider (IdPIdP An Identity Provider (IdP) is a software tool or service that offers user authentication as a service. The IdP manages the user's primary authentication credentials and issues assertions derived from those credentials. At UT Austin, the primary IdP used to authenticate the UT EID and EID Password is Enterprise Authentication, which is managed by the IAM Team. For more information, see our Concepts page.) image.
- Updated Enterprise AuthenticationAuthentication Authentication is the act of determining that a person is who they claim to be. For more information, see our Concepts page. to tested tag.
- Updates to hyperlinks on Multi-Factor Authentication (MFAMFA Authentication makes use of one or more factors of authentication: something you know (e.g., a password), something you have (e.g., your smartphone), or something you are (e.g., a fingerprint). Multi-Factor Authentication (MFA) makes use of two or more factors when authenticating you. For more information, see our Concepts page.) user interface.
News
Release Notes – EID System – uTexas Identity Manager – Version 2020.6.0
Release Notes – EIDUT EID The University of Texas Electronic Identity (UT EID or EID) is the public records identifier for principals at the university. See our Concepts page for more information. System – uTexas Identity Manager – Version 2020.6.0
** Bug
* [EID-3411] – RabbitMQ notifications missing utexasEduPersonIsoNumber
Release Notes – EID System – uTexas Identity Manager – Version 2020.5.2
On Friday, 5/15/2020, the IAMIAM Identity and Access Management (IAM) is a set of policies, processes, and technologies designed to ensure that the right individuals (identities) have the right access to resources within an organization. IAM involves managing and securing digital identities, controlling access to systems and data, and maintaining the confidentiality, integrity, and availability of information. Team will release uTexas Identity Manager version 2020.5.2 to address a security issue and replace the downloadable EIDUT EID The University of Texas Electronic Identity (UT EID or EID) is the public records identifier for principals at the university. See our Concepts page for more information. Remote Upgrade form.
Upcoming changes to Multi-Factor Authentication (MFA)
What’s Changing?
In support of the Multi-Factor Authentication (MFA) Strategy produced by the Information Security Office (ISOISO The Information Security Office (ISO) is the University’s information security team.), Enterprise AuthenticationAuthentication Authentication is the act of determining that a person is who they claim to be. For more information, see our Concepts page. and UT Shibboleth will be configured to enforce multi-factor authentication for current faculty, current staff, current students, future faculty, and future staff regardless of the resource being accessed on June 15, 2020. The Executive Compliance Committee approved the date and approach on April 15, 2020.
Multi-factor authentication provides an additional level of security when using university online services. Cyber-security attacks are on the rise with 20% more university accounts compromised in 2019 as compared to 2018. Additionally, compromised student and guest accounts have risen 51% since 2018. Forecasting from the university’s ISO predicts this growth will only continue without intervention.
More information can be found on the Campus-Wide MFA Implementation project page.
When?
- May 26, 2020 – Canvas and Zoom
- June 15, 2020 – All other applications integrated with Enterprise Authentication and UT Shibboleth.
ITSITS Information Technology Services (ITS) will begin communicating broadly to campus end users in mid-May.
Action Required
Application owners should perform analysis and/or testing of their applications to ensure readiness for this change.
If you are an application owner and do not think that your application will be prepared for June 15, you must request a temporary reprieve by submitting an ISO Exception Request.
Questions?
If you are an application owner and would like assistance in testing, please contact mfateam@utlists.utexas.edu.
If you have any questions or need further assistance, please contact the Service Desk at 512.475.9400 or help@utexas.edu
Release Notes – SailPoint IdentityIQ (IIQ) – Version 2020.5.0
On Wednesday, April 22, 2020 the IAMIAM Identity and Access Management (IAM) is a set of policies, processes, and technologies designed to ensure that the right individuals (identities) have the right access to resources within an organization. IAM involves managing and securing digital identities, controlling access to systems and data, and maintaining the confidentiality, integrity, and availability of information. Team released SailPoint IdentityIQ (IIQIIQ SailPoint IdentityIQ (IIQ) is a group- and role-based authorization management service. See Identity Lifecycle Management for more information.) version 2020.5.0 which implemented the following changes:
- Transition from a UTLogin Web Policy Agent (WPA) to a SAMLSAML Security Assertion Markup Language (SAML) is a standard, XML-based language for exchanging authentication and authorization data between identity providers and service providers. This standard is currently used by Enterprise Authentication (as well as hundreds of service providers that integrate with our identity provider). Service Provider.
- Addressed a security vulnerability.
