Presentation is loading. Please wait.

Presentation is loading. Please wait.

From 0 to 34,000 Multifactor Users in Six Months

Published byElmer Patterson Modified over 7 years ago

Similar presentations

Presentation on theme: "From 0 to 34,000 Multifactor Users in Six Months"— Presentation transcript:

1 From 0 to 34,000 Multifactor Users in Six Months
Educause Security Professionals Conference Brad Judy

2 Jan 2014 - Motivations and requirements

3 Who here was hit with direct deposit fraud?

4

5 Requirements Mitigate common phishing Easy for end users
Rapid deployment Flexible for other purposes (no specific use cases)  Brad Judy • Educause SPC Multifactor • 5/5/2015

6 Feb-Apr 2014 - Key decisions

7 What is the most important aspect of deploying multifactor?

8 Things we considered Go manual Existing info MFA
PIN or security questions “Risk based” MFA Tokens Phones

9 +

10 How to get phone #’s into Duo?
Real-time integration between HRMS and Duo Oracle Service Bus and Master Data Management in between HRMS OSB MDM Duo

11 How good is your HR home/mobile phone number data?

12 +

13 Support Employee Services IT Service Desk Vendors
Support begins with Employee Services service desk Employee Services IT Service Desk Vendors

14 Apr-July 2014 - Implementation
 Brad Judy • Educause SPC Multifactor • 5/5/2015

15 Where are you with MFA? All done implementing, here to gloat
Implemented for some services, expanding In progress deploying Planning deployment (tech chosen already) Early phases (requirements, selection, etc.) Just starting to think about it

16 Initial setup The easy step

17 Data integrations Load ALL the users!!
Returning employee update issue Load ALL the phones!! (well, three of them) Fixing international phone formats HRMS OSB MDM Duo

18 Functional integration
Connecting GreyHeller ERP Firewall to Duo

19 Communications Website, video, s. Separate comm about updating phone numbers and MFA.  Brad Judy • Educause SPC Multifactor • 5/5/2015

20 July 18, 2014 – Go Live

21  Brad Judy • Educause SPC 2015 - Multifactor • 5/5/2015

22  Brad Judy • Educause SPC 2015 - Multifactor • 5/5/2015

23  Brad Judy • Educause SPC 2015 - Multifactor • 5/5/2015

24 Nine month stats 21,000+ people have used it
63,000+ authentication attempts 16.5% failure rate = 52,000+ successful 55% voice, 45% SMS (for successful) 100,000 telephony “credits” = $1,000

25  Brad Judy • Educause SPC 2015 - Multifactor • 5/5/2015

26 Problems encountered Duo UI didn’t like 100,000+ users/phones
Data feed bumps (international number formatting, etc.) Still issues with bad phone numbers Duo account reps keep calling me about the 100,000+ users

27 Next steps

28 Where do you want to use MFA?
IT admins (SA, DBA, Network, etc.) VPN Other remote access (SSH, RDP, etc.) ERP systems General web authentication system Specific application Other?

29 Student self-service HR/HCM privileged user Examining other use-cases with ERP Firewall options like field-level step-up MFA Implement new Duo delegated admin roles for service desks

30  Brad Judy • Educause SPC 2015 - Multifactor • 5/5/2015

Download ppt "From 0 to 34,000 Multifactor Users in Six Months"

Similar presentations

McAfee One Time Password

McAfee One Time Password
INFO415 Approaches to System Development: Part 1

INFO415 Approaches to System Development: Part 1
Who “Owns” the Data? Who “Owns” the Data? Dr. Joy Hatch Harford Community College EDUCAUSE Southeast Regional Conference.

Who “Owns” the Data? Who “Owns” the Data? Dr. Joy Hatch Harford Community College EDUCAUSE Southeast Regional Conference.
Information Security Confidential Two-Factor Authentication Solution Overview Shawn Fulton January 15th, 2015.

Information Security Confidential Two-Factor Authentication Solution Overview Shawn Fulton January 15th, 2015.
The Remote Workplace Designing, deploying, and supporting the remote workplace environment Presented by: John Milhoan Information Technology Cooperative,

The Remote Workplace Designing, deploying, and supporting the remote workplace environment Presented by: John Milhoan Information Technology Cooperative,
PKI Activities at Virginia January 2004 CSG Meeting Jim Jokl.

PKI Activities at Virginia January 2004 CSG Meeting Jim Jokl.
Information Security The University of Texas at Dallas Education – Partnership – Solutions ISC Meeting April 10, 2015 Information Security

Information Security The University of Texas at Dallas Education – Partnership – Solutions ISC Meeting April 10, 2015 Information Security
Module 3: Business Information Systems Enterprise Systems.

Module 3: Business Information Systems Enterprise Systems.
Passwords are Dead (or how I learned to love my phone)

Passwords are Dead (or how I learned to love my phone)
CertAnon The feasibility of an anonymous WAN authentication service Red Group CS410 March 1, 2007.

CertAnon The feasibility of an anonymous WAN authentication service Red Group CS410 March 1, 2007.
OFFICE OF BUDGET AND FINANCE Information Security Office ISC Meeting August 21, 2015 Information Security Office

OFFICE OF BUDGET AND FINANCE Information Security Office ISC Meeting August 21, 2015 Information Security Office
Remote Access Portal Project Ben Dawson Larry Finn Peter Stickney Ken Vedaa May 7, 2011 4GC.

Remote Access Portal Project Ben Dawson Larry Finn Peter Stickney Ken Vedaa May 7, GC.
ITS – Identity Services ONEForest Security Jake DeSantis Keith Brautigam

ITS – Identity Services ONEForest Security Jake DeSantis Keith Brautigam
- NCSU project goals and requirements - Adoption Drivers - Current challenges and pain points - Identacor at NCSU - Identacor Features - NCSU Key Benefits.

- NCSU project goals and requirements - Adoption Drivers - Current challenges and pain points - Identacor at NCSU - Identacor Features - NCSU Key Benefits.
LG DATABASE AND REPORTING SYSTEM (LGDRS) 8-9 September 2015

LG DATABASE AND REPORTING SYSTEM (LGDRS) 8-9 September 2015
Duo UI Demo Christopher Bongaarts. CONTEXT/MOTIVATION Two-factor auth already in use –“M Key” – Safeword Silver tokens, Safeword PremierAccess software.

Duo UI Demo Christopher Bongaarts. CONTEXT/MOTIVATION Two-factor auth already in use –“M Key” – Safeword Silver tokens, Safeword PremierAccess software.
UCB Messaging Initiative Brad Judy Information Technology Services.

UCB Messaging Initiative Brad Judy Information Technology Services.
Merchant Services for Website Paycron. About Paycon Paycron is purposive in meeting immediate solutions in crafting merchant account services and credit.

Merchant Services for Website Paycron. About Paycon Paycron is purposive in meeting immediate solutions in crafting merchant account services and credit.
BuckeyePass Multi-Factor Authentication. 2 What is Multi-Factor Authentication? Adds a 2 nd layer of security Combines something you know with something.

BuckeyePass Multi-Factor Authentication. 2 What is Multi-Factor Authentication? Adds a 2 nd layer of security Combines something you know with something.
Justin Scheitlin Daisey Fahringer

Justin Scheitlin Daisey Fahringer

Similar presentations

Ads by Google