News

  1. Home
  2. News

New DUO Operation System Requirements

DUO is the two-factor security authentication that the University of Alabama requires students and faculty to use in order to access myBama accounts. DUO now has new operation system requirements that students and faculty need review for their devices.  

iOS

The current version of DUO Mobile supports iOS 15.0 and greater, but we cannot guarantee DUO Mobile’s functionality on preview/beta software provided by Apple. DUO recommends upgrading to the most recent version of iOS available for your device. The DUO Mobile app in compatible with the M1 iPad Pro.

iOS 14 and older

Users running versions 14 and older will not be able to download the latest version of Duo Mobile from the App Store. This removal from the App Store does not affect mobile app authentications for users who have already downloaded the app.

Additionally, we no longer provide troubleshooting support, bug fixes, maintenance fixes, or security updates for mobile devices running version 14 and older.

This end-of-support milestone is not an end-of-life for our application on devices with this operating system (or older operating systems that are no longer supported); push and app-generated passcode authentications will continue to function on installed apps. While authentications will continue to function, we always recommend users run the latest version of Duo Mobile on a supported operating system to maintain a strong security posture and get access to the latest features and improvements.

Android

The current version of Duo Mobile supports Android 11.0 and greater and Android Go 11.0 and greater. Duo recommends upgrading to the most recent version of Android available for your device. We cannot ensure the compatibility of Duo Mobile with custom variants or distributions of Android. Duo Mobile is not supported for use on ChromeOS or Huawei. Duo does not provide official support for non-standard custom Android distributions like OnePlus, LineageOS, or ColorOS.

February 8, 2024 was the last date of support or Duo Mobile on Android 10. Effective February 8, 2024, Android 11 is the minimum supported version for Duo Mobile. This only applies to the Duo Mobile app support. 
Please note: This article does not apply to the operating systems policy determination for out-of-date Android version, which already has Android 11 marked as EOL: Duo Administration – Policy & Control: Android Version Information

Android 10 and older

Users on Android versions 10 and older will not be able to download the latest version of Duo Mobile from the Play Store. This removal from the Play Store will not affect mobile app authentications for users who have already downloaded the app.

Additionally, we no longer provide troubleshooting support, bug fixes, maintenance fixes, or security updates for mobile devices running versions 9 and older.

This end-of-support milestone is not an end-of-life for our application on devices with this operating system (or older operating systems that are no longer supported); push and app-generated passcode authentications will continue to function on installed apps. While authentications will continue to function, we always recommend users run the latest version of Duo Mobile on a supported operating system to maintain a strong security posture and get access to the latest features and improvements.

If your phone cannot run these OS please contact the OIT help desk for other alternatives.

Outage – CrowdStrike cybersecurity software

A global CrowdStrike outage early Friday morning is affecting the University of Alabama network. The current known impact is network connectivity in some areas of campus and OnBase management platform. A security incident or cyberattack did not cause this outage.

CrowdStrike’s cybersecurity software detects and blocks hacking threats. Like other cybersecurity products, it requires deep-level access to a computer’s operating system to scan for threats. In this case, computers running Microsoft Windows appear to have crashed because of a software code update issued by CrowdStrike interacting with the Windows system.

If you believe a UA-managed system you use is having issues, please submit a report to the IT Service Desk at ITSD@ua.edu or 205-348-5555. Updates will be provided on the OIT Service Status webpage.

Mobile Application Management Deploying to UA Staff

Mobile Application Management (MAM) will be deploying to UA staff July 22, 2024.

MAM is a platform OIT will use to manage the data tied to UA emails on mobile devices. Using MAM, OIT will be able to remove user@ua.edu data from a personal device if it is lost or stolen. Because this exclusively removes user@ua.edu data from the mobile device, the data will still be accessible on all other devices. They can be accessed on a mobile device once the account has been logged in again.

These policies do NOT apply to any personal accounts in Microsoft Applications and OIT is not tracking any personal information using MAM.

The Onboarding process looks different depending on whether you have an iOS or Android device. For both devices, you will see a notification prompt that says, “Your IT Administrator is now helping you protect work or school data in this app.”

iOS Users

For iOS users, the change is very simple. You will be prompted to create a PIN within apps that involve your UA email, and a biometric login can be used for all subsequent logins.

Android Users

The Android apps do not have a management layer needed for UA to manage company data remotely. Because of this, you will be prompted to download the Intune Company Portal app. Once the app is downloaded and you have logged in, you will be prompted to create a PIN within apps that involve your UA email, and a biometric login can be used for all subsequent logins.

Original notice of MAM
Creating a PIN
Andorid App to assist MAM

For FAQ’s and more information, please visit this link: https://oit.ua.edu/services/security/mobile-application-mangement-mam/

Beware: Smishing Scams Impersonating UA Leadership

We want to bring to your attention a concerning trend that has been on the rise recently: smishing scams impersonating UA leadership. “Smishing” is a term used to describe phishing scams that occur via SMS or text messages.

These fraudulent messages may appear to be from President Bell or another university official, and they often aim to deceive recipients into providing personal information, financial details, or access to sensitive university systems.

We want to emphasize that these messages are not legitimate communications from President Bell or any university representative. They are malicious attempts to exploit our community members.

While we urge everyone to remain vigilant, we do not require individuals to report these smishing attempts unless they have already provided sensitive information or access to their devices. However, it is crucial to spread awareness and caution among our community members to prevent falling victim to these scams.

If you receive a suspicious message claiming to be from President Stuart Bell or any other university authority figure, please refrain from clicking on any links or providing any personal information. Instead, you can report these messages to your mobile carrier for further investigation.

Eduroam Certificate Expiring

The current Eduroam certificate expires on Thursday, May 2, and must be replaced. Historically, most devices deal with the certificate replacement fairly smoothly, but some devices will prompt the user to accept/trust the new certificate. If your computer prompts you to accept a new Eduroam certificate on Thursday regarding Eduroam, please accept/trust the new certification to continue an uninterrupted Wi-Fi experience.

OIT to Perform Disaster Recovery Exercise

The Office of Information Technology (OIT) is performing a disaster recovery exercise from Saturday, May 18, at 7:00 a.m. to Sunday, May 19, at 7:00 p.m. The exercise will involve shutting down the Gordon Palmer data center network and restoring services at the Ridgecrest data center. We do not anticipate this exercise affecting email, Office 365 or Blackboard Learn, but all applications housed in the Gordon Palmer data center will be unavailable.

During this exercise, OIT will isolate the Gordon Palmer data center from the UA network, simulating a disaster that has rendered the data center inoperable. The primary goal of this exercise is to validate network connectivity, identity services, internet connectivity, and other prerequisites for the continuity of IT operations. Additionally, OIT will conduct a Banner recovery exercise, validating that we can successfully restore operations to a “business as usual” state once a disaster has been remediated. 

If you have any questions or concerns, please contact the IT Service Desk at 205-348-5555 or itsd@ua.edu.

Upgrade Notice: K2/Everest Production Environment Update to Version 5.6

On April 7, 2024, we will be upgrading to Version 5.6 to enhance system performance, security, and functionality.

Key Upgrade Details:

  • Date and Time: The upgrade is scheduled for April 7, 2024.
  • Affected System: K2/Everest production environment.
  • Upgrade Version: We will be updating to Version 5.6.
  • Expected Downtime: Minimal downtime is anticipated; however, there may be brief interruptions in service during the upgrade process.

Important Notes for Users:

  • Plan Ahead: Please plan your work accordingly, considering the upgrade timeline.
  • Save Work: We advise saving any important work or documents prior to the upgrade to avoid potential data loss.
  • Post-Upgrade Support: Our IT support team will be available to assist with any issues or queries following the upgrade. Please don’t hesitate to reach out if you encounter any difficulties.

We understand the importance of uninterrupted access to our systems, and we assure you that every effort will be made to complete the upgrade process efficiently and minimize any disruptions. If you have any questions or concerns regarding the upcoming upgrade, please contact the IT Service Desk at ITSD@ua.edu or (205) 348-5555.

Upgrade Windows 10 – 22H2

Beginning in April 2024, faculty and staff with Windows computers will begin receiving announcements on their computers to upgrade Windows 10 to the newest supported version, 22H2.

Faculty and staff have the option to upgrade when they receive the announcement or schedule the upgrade for another time. OIT recommends that faculty and staff perform the update at the end of the workday, as the upgrade will require 90 minutes of downtime.

This upgrade will not delete any applications or data, but as always, OIT recommends backing up before performing any OS upgrade. Windows 11 users will not be affected.

Please perform this upgrade at a time convenient to you. OIT suggests starting the upgrade or scheduling it to occur just before you leave for the end of the day. OIT also recommends performing the upgrade while on campus, connected to power, and connected to the UA network. Below is an example of the announcement faculty and staff can expect to see.

Machines that are not upgraded by September will automatically receive the update from OIT. OIT recommends that faculty and staff schedule the upgrade for this summer and perform it at a time of their choosing.

Important Notice: Phasing out LDAP for Azure Authentication

The Office of Information Technology is phasing out the use of Lightweight Directory Access Protocol (LDAP) for authentication purposes by the end of 2024. Instead, we are transitioning to more secure and efficient solutions provided by Microsoft, specifically Azure Authentication and Microsoft Entra ID (formerly Azure AD).

What does this mean for you? If you manage a departmental application and that application currently uses LDAP for authentication, please note that it will soon be deprecated. As such, we kindly ask all application owners and support teams to begin the migration process to Azure Authentication or Microsoft Entra ID as soon as possible.

While OIT will handle the migration of authentication systems at the infrastructure level, the responsibility of migrating individual applications to the new authentication protocols will fall upon the respective application owners and support teams. We understand that this may require some effort and coordination, and we are here to assist you throughout the transition process.

If you have any questions or require assistance with the migration process, please email the Office of Information Technology’s identity mailbox – iam@ua.edu and someone will reach out to you with assistance.