Presentation is loading. Please wait.

Presentation is loading. Please wait.

MBUG 2017 Session Title: Username and Password Security - A Review Of Account Retrieval, Sign In, and Multi Factor Authentication Presented By: Allen McGehee.

Published byEmerald Hancock Modified over 6 years ago

Similar presentations

Presentation on theme: "MBUG 2017 Session Title: Username and Password Security - A Review Of Account Retrieval, Sign In, and Multi Factor Authentication Presented By: Allen McGehee."— Presentation transcript:

1 MBUG 2017 Session Title: Username and Password Security - A Review Of Account Retrieval, Sign In, and Multi Factor Authentication Presented By: Allen McGehee Institution: Mississippi College September 12, 2017

2 Session Rules of Etiquette
Please turn off your cell phone If you must leave the session early, please do so discreetly Please avoid side conversation during the session

3 Mississippi College mc.edu
Founded in 1826 FTE = 5,070 Main Systems: Ellucian Banner, Google Apps, Moodle and Canvas

4 Allen McGehee gmcgehee@mc.edu
Programmer / Analyst 29 Wife and 2 kids

5 Single Sign On(SSO)

6 Our Systems MyMC – Central Authentication Service(CAS) Ellucian Banner
Self Service - CAS INB – DB Authentication Google Apps - CAS Gmail Calendar Drive Moodle And Canvas - CAS

7 Our Systems - Authentication
Authentication Flow Creation Banner (Applicants/Enrolled) -> Active Directory(AD)/Google Apps AD -> GOBTPAC table Authentication to Banner Self Service MyMC Username/Passsword against AD Redirect to BannerSS Yale PL/SQL CAS Client Verify CAS Ticket and cross reference GOBTPAC table for external user id Redirect to requested page

8 Our Story – Phishing

9 Our Story – Phishing

10 Our Story- Compromised Accounts

11 MC’s Response Education Change Passwords Block Bogus MyMC URL’s
Tighten Spam Settings in Google Apps Got Your Back – Delete s Antivirus

12 MC’s Response cont’d Block Suspicious IP’s in Africa
Address Robo Login Pattern: reCAPTCHA Address potential 2 Factor Authentication: Federated Login (Future)

13 ReCAPTCHA reCAPTCHA 2.0 – google.com/recaptcha Recaptcha 1.0:

14 ReCAPTCHA Walkthrough

15 ReCAPTCHA Walkthrough

16 ReCAPTCHA Walkthrough

17 ReCAPTCHA Walkthrough

18 Federated Authentication
2 Factor Authentication Something You Know / Something You Have Google Apps Security Text, Call, Authenticator App, Security Key, Apps Specific Passwords Hurdles Implement Federated Authentication with MyMC Google Apps Password Sync (GAPS) Figure out how to sync/inject AD Attributes into the SSO/SAML flow (group memberships)

19 ReCAPTCHA Breakdown Reasons We Took It Down
High Value Users Received Captcha Too Frequently Reduced Productivity - Detail Oriented Free Service - Outtage

20 Password Manager Integrated Solution by Unyfied
Remain in the Portal Ecosystem Username/Password Self Service Reset Lookup Reset - After Expiration Forgotten Change Login Multi Factor an option at each action Questions, , SMS (Text Message)

21 Other Colleges Where are you in this process? Attacked?
Multi Factor in place? Banner 9 Opportunity?

22 Questions

Download ppt "MBUG 2017 Session Title: Username and Password Security - A Review Of Account Retrieval, Sign In, and Multi Factor Authentication Presented By: Allen McGehee."

Similar presentations

Pennsylvania Banner Users Group 2007 Conference APEX Applications for Student Presented by: Jane Gilbert, Director of Application Support Services Sandra.

Pennsylvania Banner Users Group 2007 Conference APEX Applications for Student Presented by: Jane Gilbert, Director of Application Support Services Sandra.
Workflow Basics Tommy Parker Sr. Systems Analyst & Team Leader Mississippi State University 1 MBUG – September 17, 2012.

Workflow Basics Tommy Parker Sr. Systems Analyst & Team Leader Mississippi State University 1 MBUG – September 17, 2012.
UNC General Administration

UNC General Administration
1 Presented by: Betty Schmidt Marcia Hamor Payroll Department, Parkland College May 21, 2013 Colleague - HR/Payroll Birds of A Feather.

1 Presented by: Betty Schmidt Marcia Hamor Payroll Department, Parkland College May 21, 2013 Colleague - HR/Payroll Birds of A Feather.
Session Title: How to Find and Understand Documentation - Using the new Ellucian Hub Presented By: Lisa McDaniel Institution: Mississippi University for.

Session Title: How to Find and Understand Documentation - Using the new Ellucian Hub Presented By: Lisa McDaniel Institution: Mississippi University for.
SESSION TITLE SESSION SUBTITLE Presenter Name(s) Presenter Institution(s) Date Track Coeur d’Alene, Idaho.

SESSION TITLE SESSION SUBTITLE Presenter Name(s) Presenter Institution(s) Date Track Coeur d’Alene, Idaho.
FMCSA Portal Enforcement: Online Self Service Account Management Prioritization Phase I Release, December 2010 v1.0.

FMCSA Portal Enforcement: Online Self Service Account Management Prioritization Phase I Release, December 2010 v1.0.
FSUSD August 2011 Ed Tech. Every user has a username and a password. In FSUSD, you have to log in using your Novell username and password (min. 8 characters).

FSUSD August 2011 Ed Tech. Every user has a username and a password. In FSUSD, you have to log in using your Novell username and password (min. 8 characters).
Presenter Name Presenter School. About this Template  This template is compatible with Microsoft ® PowerPoint ® 2007, PowerPoint ® 2010, PowerPoint ®

Presenter Name Presenter School. About this Template  This template is compatible with Microsoft ® PowerPoint ® 2007, PowerPoint ® 2010, PowerPoint ®
FSUSD August 2011 Ed Tech. Go to the Google Project page on our website for information on how to set your password and then login to Gmail.Google Project.

FSUSD August 2011 Ed Tech. Go to the Google Project page on our website for information on how to set your password and then login to Gmail.Google Project.
Parent Orientation October 8, 2015. Topics for Tonight We will cover the highlights of each program and how to create an account. The district encourages.

Parent Orientation October 8, Topics for Tonight We will cover the highlights of each program and how to create an account. The district encourages.
Session Title: Banner Authentication and Login Validation Presented By: Allen McGehee Institution: Mississippi College September 13, 2015.

Session Title: Banner Authentication and Login Validation Presented By: Allen McGehee Institution: Mississippi College September 13, 2015.
Academic Scheduling and Configuration in Practice Amy Adkerson, Associate Registrar Sterling McCool, Systems Analyst Mississippi State University September.

Academic Scheduling and Configuration in Practice Amy Adkerson, Associate Registrar Sterling McCool, Systems Analyst Mississippi State University September.
Session Title Presented by: Name, Institution Day, Date, Time ##:## Session ID ###

Session Title Presented by: Name, Institution Day, Date, Time ##:## Session ID ###
SANSUEB SOFTWARE PRESENTS SkyTextMsg – Online Texting for your Business.

SANSUEB SOFTWARE PRESENTS SkyTextMsg – Online Texting for your Business.
Online Login Security Enhancement Creating an online username & password November 2015.

Online Login Security Enhancement Creating an online username & password November 2015.
Presenter Name: Presenter Title: Institution: Email Address: Session ID: 115 April 10, 2010 Enabling Functional Users with Argos Bruce Knox Project/Program.

Presenter Name: Presenter Title: Institution: Address: Session ID: 115 April 10, 2010 Enabling Functional Users with Argos Bruce Knox Project/Program.
Integrating Grant Information between RAMSeS and Banner Finance Panda Powell and Don Sloan UNC Wilmington.

Integrating Grant Information between RAMSeS and Banner Finance Panda Powell and Don Sloan UNC Wilmington.
BSNL-Hungama SSA Portal – User Guide URL -

BSNL-Hungama SSA Portal – User Guide URL -
How to configure webmail with gmail- Step by Step guide provided by web hosting company in India Call us - +91 231 2620003.

How to configure webmail with gmail- Step by Step guide provided by web hosting company in India Call us

Similar presentations

Ads by Google