Project Type: Enhance Identity and Access Management
Service Account Migration
Active, Key ProjectWhat is it? ITS is currently working on a project to migrate service accounts for applications using the legacy Heimdal Kerberos authentication protocol to Active Directory (AD). Kerberos and AD are both systems that manage user credentials at UNC. Why are we doing it? The move is necessary because support for the legacy Kerberos system is fading, and it’s becoming difficult to maintain. By switching to AD, we can ensure a more sustainable and efficient… Read More about Service Account Migration.
Microsoft M365 Number Matching for MFA
CompletedMicrosoft is moving to a more secure method of authentication that changes “Push” notifications. The new process for logging into Microsoft 365 gives you an auto-generated number to type into your device. Microsoft doesn’t have an exact switchover date, but the purpose of this project is to get campus ready before Microsoft acts. Pilot groups are currently testing the system. (“Number matching” means that when users go through an MFA Authentication, they see a number… Read More about Microsoft M365 Number Matching for MFA.
Access Request Re-Engineering
ActiveWhat is it? ITS is looking into holistic solutions to replace and modernize the existing access request process and system by creating a completely paperless solution that simplifies the access request process. Solutions include automation of access based on job positions and HR Onboarding/Offboarding processes. We are also making improvements to the existing access request system for better usability and in preparation for the long-term solution. Why are we doing it? The current access request… Read More about Access Request Re-Engineering.