Using Bitlocker to Encrypt your PC

by in , 0

Dear Colleagues,

CSUCI uses Windows Bitlocker for full disk encryption of campus owned PCs.  In the coming months, faculty and staff will receive additional communication about the need to encrypt computers that currently are not encrypted.  IT staff will work with individuals as needed to make the process as quick and straightforward as possible.

Why Encrypt?

Encryption is a technology used to protect data from unauthorized disclosure. It is the process of encoding information in such a way that hackers or eavesdroppers cannot read it.  Additionally, when your computer is encrypted all files are protected from unauthorized users in the event that your computer is lost or stolen. 

The ever increasing need for improved security requires that the campus make steady progress toward encrypting computers used by faculty and staff.  Classroom computers are currently exempt.

To prepare for encryption we encourage users to backup their important files to one of our campus supported data storage locations like OneDrive or Google Drive.   If you'd like assistance backing up, please submit an ITS Service Request or contact the Shared Services Solution Center at 805-437-8552.

Thank you for your support and continued partnership in this important endeavor.

 

 


Monthly Bulletin - January 2021

by in , 0

Our monthly bulletin provides a summary of activities & accomplishments for the department of Information Technology Services

 User Services

  • Continued monitoring and consultation with Library on meeting student needs for hotspots and loaner laptops.  ITS helped secure another set of 40 hotspots for distribution by the Library.
  • Continued on-site presence to address urgent technology needs and hardware installations.
  • Presented ITS as part of the New Employee Orientation event hosted by Campus Human Resources.
  • Resolved several long-standing door access issues with Facilities Services.
  • Prepared new instructor computers for classrooms.
  • Facilitated several high priority security efforts related to POP/IMAP service, Malware Bytes testing, software updates, etc.
  • Preparing MSFT purchases which included vendor visits and technology comparisons, gathering quotes and requirements.
  • Produced several communications promoting new wifi service at the CI Boating Center.
  • Made new Windows Feature Updates available through SCCM scheduled tasks and user run updates
  • Performed Pharos printer preventative maintenance on student accessible printers as requested by the campus committee on logistics.

Application Services

  • Development, Testing, Quality Assurance, and Move to Production completed or scheduled during January 2021:
    • Web Directory enhancements for Auxiliaries – Principle Development and QA
    • PSAR Automation Enhancements – Principle Development
    • CalState S4 Interface Update Rolling Term Enhancement – Principle Development
    • Engage / CI Sync Corrections - Principle Development and QA
    • Student Records Data Mart MP14 Retrofit – MTP
    • Admission Application Rollover MP14 Retrofit - MTP
    • Transition of Web Applications from Freevo to .Net Core - Principle Development Continues
    • Santa Rosa Island Web Application – Principle Development Continues
    • Creation of 2021 Career & Internship Fair Web Application - Principle Development & MTP
  • Work Continues on mandated CHRS Recruiting Project
  • Database Scripts for the following areas were developed and deployed during January 2021:
    • Student Records (2) – CR / NC Grades, Degree Audit Mapping fix for MP14
    • Admissions (5) – Checklist Due Date, Basis of Admission for 2212 & 2218
  • The Following Maintenance was performed:
    • Maintenance Pack 14.00 was installed in CI Records and CI Personnel
  • The Following Data Warehouse and Institutional Reporting Activity took place during January 2021:
    • CFS Data Warehouse Integration with OneCI Data Warehouse Continues
    • Data warehouse operational work for BFA, Student Affairs, Advancement and Academic Affairs
    • Tableau Server Upgrade Project Continues – Communication and Testing
  • Application Services continued supporting the following operations and projects:
    • 2020 OSHA Report Produced
    • Transact Support for UAS
    • CFS 1099  Coordination for BFA
    • Student Financials 1098T Coordination
    • CSU CMS - AWS Hybrid Cloud Project
    • Identity and Access Management Support
    • CFS Related Support of BFA Operations

Infrastructure

  • Installed cabling and outdoor WiFi access points at Channel Islands Boating Center for the premier implementation of CI Parking Lot WiFi.  
  • Prep work for implementation of CI Parking Lot WiFi at Sage Hall
  • Project Management/Supervision of Contractor for Chancellor’s Office CNI WiFi refresh program that is replacing aging WiFi access points inside of Bell Tower, Aliso Hall and Madera Hall
  • Attended online Fall Protection Training
  • Security issues remediation:  disabled insecure rc4 Kerberos protocols on active directory to combat Kerberoasting attacks
  • Security issues remediation:  disabled imap/pop2 authentication in csuci.edu mailboxes as an extra security measure
  • Started migration G Drive/Google Drive to SharePoint migration for CAPS
  • Enabled single sign-on for PMWeb, Shared Web Services Infrastructure, and CNI Refresh portal (Chancellor’s Office applications)
  • Enforced MFA for O365 browser authentications
  • Upgraded our data integrations server to the latest release and updated all packages running on the server


Information Security

  • Revised SAQ’s were sent to CO Audit to close out CI’s outstanding Information Security Audit items
  • Information Security met with Secureworks to put together a SOW for Information Security assessment review
  • The new Adobe sign VPN Access Request Form has been fully implemented and is available for use.  Request for update of web documentation has been made and a communication via EchoTech and the Information Technology blog are scheduled to be sent out 2/1/2021.
  • Information Security began working with CI’s PMO on capacity planning
  • CI was added as a Data Privacy Day 2021 Champion. https://staysafeonline.org/data-privacy-day/all-champions/  Data Privacy Day aims to inspire dialogue, and empower individuals and companies to take action on how their personal information is being used, collected or shared in our digital society.
  • January 12, 2021 - An article on Data Privacy Day was posted on the CI News Center / https://www.csuci.edu/news/releases/data-privacy-day-2021.htm
  • Working with Jamf consultants Information Security staff were able to optimize our CI’s Jamf environment to support remote Mac computers. This includes over 15 changes or recommendations. This has led to a more stable and faster Jamf system, which will benefit our campus Mac users.
  • Mac OS Big Sur (Mac 11.1) was released to campus users and was available to all via software updates on January 1, 2021.
  • January 6, 2021 - Apple loaned CI a M1 - MacBook Air for 2 weeks for testing. The testing revealed campus software will work with some modifications, but our Jamf needs changes to support the new ARM architecture.
  • We held several meetings with the CO and Dell Secureworks regarding securing CI against malicious threat actors.
  • Kenna Security POC was completed and is ready for use by the Infrastructure group
  • Use of LastPass was approved for ITS staff and the quote for was submitted for approval
  • January 14, 2021 – Information Security met with internal stakeholders to improve on the IT procurement process
  • January 22, 2021 - Info Sec and CI PD did a B.E.C. (Business Email Compromise) presentation to HRE’s Res Ed Student Assistant about scams targeting students in the dorms
  • Carlos Miranda assisted BFA with the new Internal Auditor candidate interviews
  • The new image for Windows (20H2) is now completed and being used by USG. The lab image for Windows (20H2) is in the final stages before being released to USG.
  • Continued with scheduled internal quarterly and monthly internal assessments for:
    • CI Records, CI Personnel, and CI Financials
    • Unisys Data Center
    • PeopleSoft Oracle Accounts
    • Segregation of Duties

 

Collaborate with Microsoft Teams Guest Access

by in , , 0


Microsoft Teams Guest Access allows efficient collaboration with users outside of the CSUCI organization. Guest members of teams are granted access to meet, chat, and collaborate within a team just like members of the CSUCI organization!

Here’s how guests can be granted access within teams:

  1. A team owner or a Microsoft 365 admin adds a guest to a team.


  2. The guest receives a welcome email from the team owner, with information about the team and what to expect now that they are a member.


  3. The guest accepts the invitation. Guests who have a work or school account in Azure Active Directory can accept the invitation and authenticate directly. Other users are sent a one-time pass code to validate their identity (One-time passcode authentication required).


  4. After accepting the invitation, the guest can participate in teams and channels, receive and respond to channel messages, access files in channels, participate in chats, join meetings, collaborate on documents, and more using the Web-based Teams client, Teams desktop client, or mobile Teams client.

Guests can be removed from teams at any time by team owners, just as normal team members may be removed.

For more information regarding Microsoft Teams Guest Access, please refer to Guest access in Microsoft Teams.

Access the CSUCI network from the CI Boating Center

by in , ,

ITS is pleased to announce that the CI Wi-Fi service has been extended to the Oxnard/Port Hueneme coastal areas.  Networking equipment has recently been installed at the Channel Islands Boating Center improving access to the campus Wi-Fi there for CI Students/Staff/Faculty.

When you're at the boating center select available networks "Eduroam" or "CI,"  and login using your university credentials.

The new networking signals at the CI Boating Center are strong and robust enough for multiple users to access the network at the same time from the parking lot and areas just outside of the boating center facility. Anyone with  CI credentials or credentials recognized by Eduroam can get good quality internet access from the comfort of their vehicles in nearly 150 parking spaces.

The Channel Islands Boating Center is located at

3880 Bluefin Circle
Oxnard, CA 93035

If you have any questions about this or would like to give feedback on this new service, please submit an ITS Service Request or contact the Shared Services Solution Center at 805-437-8552.

Monthly Bulletin - December 2020

by in ,

 User Services

  • Provided technical support for EU Winter Session courses, including Tier 1 response on holiday or vacation days
  • Implemented loaner equipment check-out database, and completed distribution of hotspots for faculty and staff (new hotspots may still be ordered through ITS)
  • Tested improved KVM switch for Sierra Hall computer science networking lab
  • Setup new virtual lab environment for GIS/ESRM Professor Patsch with assistance on VPN access from Infrastructure
  • Prepared and delivered urgently needed computing equipment for new Provost
  • Updated and re-homed some temporary loaner laptops to their appropriate classroom 
  • Routinized specific LabStats and Auxiliary charge-back reports for the CIO
  • Promoted Digital Citizenship efforts related to security vulnerabilities with certain email delivery methods, Windows feature updates, web browsers, and Adobe Flash


Infrastructure

  • Preparation for several infrastructure projects to commence in January:  CNI WiFi refresh in Bell Tower, Aliso Hall and Madera Hall; Sage Hall and CIBC Outdoor WiFi projects
  • MC’ing of BFA Divisional Meeting
  • Work on findings from Network security audit
  • Inventorying of low-cost capital assets in preparation for CNI WiFi refresh
  • Assisted with install of second tier of networking equipment for Police PSAP Cal-OES NextGen 911 project
  • Upgraded OmniVista network tool software
  • Upgraded APC StruxureWare software for UPS Monitoring
  • Setup phone extension for new Provost
  • Upgraded myCI infrastructure to the latest version
  • Migrated ASI and Library departments from Dropbox to OneDrive
  • Integrated our Active Directory and SSO with our Asset Panda management system


Information Security

Month long projects

  • Finishing the new image for Windows (20H2)
  • Seven software vulnerabilities were patched from Advisories from MS-ISAC deemed critical.
  • Mac OS Big Sur (11) was tested and will be available for campus download on 1 Jan. 2021

 

Individual items

  • Info Sec met with the CO’s Auditor G. Dove about the outstanding items from this year’s audit. 1 Dec. 2020
  • Started a P.O.C. with Kenna Security 10 Dec. 2020
  • C. Miranda completed the 1st Cohort of the Lead CI Program that Dr. Beck started, and she selected less than Ten Faculty and Staff Administrators for the program. 14 Dec. 2020
  • C. Miranda was asked to be part of the Internal Auditor search committee. 21 Dec. 2020
  • C. Miranda attended two meetings with Qualys and Palo Alto regarding the SolarWinds breach. 22 Dec. 2020 and 24 Dec. 2020

 

Project Management 

  • Adobe Sign: Continue to complete the requests. Working on finishing request for Application Services and Auxiliary unit with their property forms. Working on Registrar and HR requisition forms.
  • IT governance – January meetings are being scheduled. Voting from the previous sub-committee meetings will be presented in the executive committee will be held in the coming weeks.
  • Meeting ITS leadership team and project managers to review project requests, active projects, and projects on hold to discuss the direction and next steps.
  • Ticketing Systems improvement initiative with the TeamDynamix team – CI team will be going through implementation readiness training offered by the TeamDynamix team.
  • Completed migration for the Division of Student Affairs and the Library. PMO offered two hands-on training sessions and one webinar to all the users who participated in migration.
  • Raiser Edge Integrations project has been initiated and the kick-off meeting will be held in January.
  • Planning and reaching out to procurement stakeholders to provide procurement training and workshops in January/February, 2021.
  • Closed 10 procurement requests.


Web Services

  • Continuing to work with DSA on the migration of http://theisland.csuci.edu content to a new content management infrastructure
  • 7 tickets have been resolved
  • Working with Modo Labs to launch Elevate program to revamp CSUCI mobile app
  • Continuing to work on fixing pdf files and broken links to be accessibility compliant


Duo Update and CI Network Maintenance

by in , , 0

Please be advised that with a recent network update to Duo, our two-factor-authentication system, there may be additional campus resources that prompt you to login with Duo.  Integrating Duo with these  resources is an important part of securing our campus digital assets.

The experience of using Duo with most services should look the same.  Most often you will see the familiar dialog box below.  Note that you can click the "Remember Me" check box which will reduce the number of times that you need to authenticate in a single day.

 

For more information about Duo, please refer to the Duo 2FA knowledgebase articles or the ITS Information Security Duo 2FA web page

Thank you for your continued support and partnership.

 

Where is your old computer?

by in , , , , 0

This is a reminder that old computers (generally 2 years beyond warranty or 5-7 years old) should be promptly removed from campus.  It is important that old computers be removed as they can pose security risks and cause friction in user and IT workflows.

You’ll be practicing good digital citizenship by notifying IT of old computers in need of removal. Please submit a Solution Center/Help Desk request for us to decommission such machines.  We can make special arrangements to have them physically removed when it is safe, but first we need your request submitted to plan the work.

Thank you for your partnership!