When working with clients in education, we’ve heard the challenges they face when attempting to increase security while enhancing the user experience for their students and faculty. What we’ve learned during our engagements with clients is that most educational institutions face the same problems even if they have vastly different IT environments. The nature of the education industry has spawned issues with password management, system access, and general overall omission of sufficient IT security measures.
With these pain points in mind, I’ve put together a list of common issues that educational institutions need to solve with a third-party vendor.
Microsoft’s Active Directory Federation Service (AD FS) is available for any organization to use as an accessible implementation option for Single Sign-On. Microsoft’s big name and popularity all but guarantee a top-notch product that many consumers will trust implicitly. Additionally, AD FS takes advantage of two popular industry standard protocols: WS Federation and SAML. This allows for more functionality through token-based SSO to other systems. All of which creates an organized login for end users.
However, this federation service is not without its own limitations. For instance, AD FS only runs on Windows Server and requires and additional installation of IIS (Internet Information Services). Before jumping into any implementation, it is important to know what the product can and cannot do for you. AD FS is no different and must be considered carefully in advance.
What exactly do you think of when you see the phrase Password reset from the Mac Desktop? There is obviously a connection to the Mac Keychain, but what does password reset on the Mac Desktop really look like? On Windows, Desktop Password reset is a no-brainer – ask just about anyone and you’ll get a practically identical response: CTRL + ALT + DEL to reset your password. For Password Reset on the Mac Desktop, however, that is an entirely different story. That’s part of the problem.
It is no great secret that Mac and Windows Operating systems are constantly competing for the largest share of the same market space. People have their preferences, and not everyone is going to be looking for the same thing in their Operating System. That is not a hard concept to grasp. However, with the growing diversity between operating systems appearing in every environment and business vertical out there, it is becoming even more important to cater to both crowds with solutions that support cross-platform integration for the most necessary tools for end-users. One of those tools is self-service password reset – and that is a tough nut to crack. Continue Reading →
Office 365 is a must-have software for all industries in today’s world. The ease of use and value of Office 365 applications are great for users on both the individual and business end. The subscription-based service allows individual users access to Microsoft apps such as Microsoft Office. For businesses Office 365 it offers a bit more. Email and social networking services essential in 2017, along with Skype for business, SharePoint, and Office Online are invaluable communication tools in the business environment. However, Office 365 is an out of the box software that lacks customization and enhanced security that could lead to potential problems for its clients.
Access control is simply controlling entry into a cyberspace as previously explained in this blog. For example, you have to have a password to access your Facebook account. This password requirement is access control. Without it, anybody could access your page and do whatever they wanted. This is primarily why cybersecurity exists…to prevent those who shouldn’t have access from getting into a cyberspace. If you have had your social media hacked, then you know that the basic password method of access control is not enough.
If you haven’t noticed yet, browsing the web in 2017 basically requires you to have multiple accounts with usernames and passwords. For my fellow Chrome users, you may forget that you are already signed into your account as soon as you open the browser unless of course, you sign out of your account every single session. Realistically who does that though? I personally love already being signed into Chrome, Gmail, and YouTube automatically. On top of having to log into the browser itself, we then have to log into Twitter, Reddit, email provider, your favorite place to buy clothes, Amazon, eBay, any news page with a paywall, Hulu, etc. This list could go on for days. The point is it appears every webpage you like to browse requires an account to be made. With these accounts, come usernames and passwords. That is exactly why there is a need for cybersecurity.
CyberSecurity Access Control with Two-Factor Authentication
Cybersecurity is on its way to becoming a $200-billion-dollar industry as we discussed in my previous blog “The Importance of CyberSecurity Access Control”. Like any industry this size, there are many different subcategories within it. In the aforementioned blog, I wrote about access control, what it is, and how it ties into cybersecurity. Today we’re going to talk about an effective means of access control known as Two-Factor Authentication!