VPN (Virtual Private Network) and 2FA (two-factor authentication) have become buzz words lately, because they are required for maintaining the security of 不良研究所 sensitive systems and data when accessing them聽from outside the 不良研究所 network.
When we were all working, studying and teaching on campus, these tools were not as often required and went unnoticed. But now that most of us are working from home and accessing 不良研究所 systems remotely, it is important that we understand when and why we need them. Let鈥檚 break it down鈥
What is VPN?
VPN is an application that creates a secure communication tunnel between your computer and the 不良研究所 network. It encrypts communications so they cannot be read or altered, even if they are intercepted by cybercriminals. When you use the VPN you have the same level of security as if you were directly on the 不良研究所 network.
When do you need it?
While working remotely, you will require VPN to access systems and resources that require high security, including certain functionality in Workday, connecting to Banner INB, remotely accessing desktop computers on campus, and others. Usually you do not need VPN when you鈥檙e working on campus.
How many times have you read a news story about a credit card database being hacked or personal information stolen? 不良研究所鈥檚 VPN is one measure to reduce the risk of this type of attack.
So now, if we think of the VPN as a secure 鈥済ateway鈥 to 不良研究所鈥檚 network, and our 不良研究所 username and password credentials as the 鈥渒ey鈥 to open it, why would we leave the key just below the doormat?聽That鈥檚 where 2FA comes in.
What is 2FA?
Simply put, 2FA (two-factor authentication) protects your 不良研究所 account by requiring you to provide a second method of identification when you log into 不良研究所 systems -聽the same type of verification you might use to log into online banking or shopping sites. It鈥檚 like showing two pieces of ID. 2FA gives your account an extra layer of protection so that even if someone were to obtain your 不良研究所 password maliciously, they would not be able to sign in and impersonate you.
The university recognizes that these are stressful and challenging times for all of us, and so do hackers!. The last thing you need is the added stress of your 不良研究所 account being compromised and your banking information falling into the wrong hands 鈥 or worse!
2FA protects you. Here鈥檚 how.
不良研究所鈥檚 2FA works best if you have a mobile device (phone or tablet). After you sign into 不良研究所 systems, including email, Office 365 apps, VPN and other sites,聽with your 不良研究所 username and password, an app notification or numeric code is sent to your mobile device; you must either click 鈥渁pprove鈥 or enter the code when prompted. If you receive an unexpected notification when you are not attempting to log in, you now have the power to block a cyberattack on your account. If you don鈥檛 have a mobile device, there is an alternative application called 鈥淎uthy鈥, which can be installed on a desktop or laptop.
As with VPN, this additional layer of security is usually only necessary聽when you access systems off campus. Once you have authorized access from a specific device, you can also check a box that says, 鈥淒o not prompt me for 60 days.鈥
The security benefits and peace of mind are well worth it!
Ready to get started?
Set up 2FA: If you鈥檙e ready to add 2FA protection on your 不良研究所 account, get started here. If you still have questions, see the Additional resources links below.
- Opt-in at www.mcgill.ca/2fa and
- Complete the 2fa setup
Set up VPN: Once you have 2FA enabled, you can use the VPN to access 不良研究所 systems while working from home, or anywhere outside the 不良研究所 network.
Additional resources:
- Resources for working remotely
- 聽(If you don't have a mobile device)
- (log in to access the form)
- Call the IT Service Desk for immediate assistance
- Search the IT Knowledge Base