As part of the University’s cybersecurity protection strategy, and to align with the Australian Cyber Security Centre (ACSC) guidelines, the University will be implementing multi-factor authentication (MFA) for all staff who access UOW resources and applications remotely.
Multi-factor authentication is one of the most effective controls an organisation can implement to prevent an unauthorised party from gaining access to our devices or network and accessing sensitive information. It can make it significantly more difficult for an adversary to steal legitimate credentials to facilitate further malicious activities on our network.
With global cybersecurity threats increasing in both number and complexity it is important that we continue to improve security of our accounts, systems and data. MFA is one way of doing this by providing a ‘double-locking’ for access to devices, networks and systems from remote sources.
It is very common practice across many organisations nowadays. You are likely to have used this when accessing or transacting with your bank account or confirming your credentials with other organisations.
The first stage of supporting the adopting MFA, will be the introduction of a new Virtual Private Network (VPN) service, Cisco AnyConnect. This will also provide increased security for remote access to our network. The current VPN, Global Protect will be decommissioned on Friday 2 July.
Prior to the decommissioning, you will see articles in Universe from IMTS providing more detail and guidance on how to set-up and use MFA and the Cisco AnyConnect VPN and we strongly encourage you to migrate to the new service at a time that is convenient to you, guides have been produced to help with this.
Should you have any questions or concerns, please contact IMTS directly at firstname.lastname@example.org.