The RBVI VPN will be down this Friday 10am-noon as we test
two-factor-authentication (TFA). If our tests are successful, another
email will announce the time-frame for implementing TFA on RBVI's VPN.
Background:
UCSF security standards require TFA when accessing UCSF computing
resources from outside of UCSF. Because the RBVI VPN currently does not
require TFA, we are not compliant with this standard. A recent audit of
RBVI computing resources identified this as a critical deficiency
requiring high priority resolution.
Our plan is to implement TFA on RBVI's VPN using the same Duo technology
as currently implemented when directly ssh'ing into RBVI's host "plato"
from outside of UCSF. Access to plato requires use of the Duo "UCSF
PharmChem" account. If you are already using this account to access
plato, then minimal/no changes will be required to access our VPN in the
future.
Please disconnect from the RBVI VPN prior to 10am on Friday, otherwise
you risk your connection being severed without warning and potentially
loosing any work in progress.