UIT is continuously working to provide the university community with the most secure technology possible to protect the confidentiality, integrity and availability of critical information and computer resources.
What is "phishing"?
Attackers attempt to obtain information by posing as a trusted individual or institution and asking you to provide information.
Report a phishing attempt by forwarding the email to email@example.com
It is strongly recommended that personally owned computers connecting to the UND network have anti-virus software running at all times.
All UND owned computers connecting to UND network are required to have university’s antivirus software. UND provides SCEP (System Center Endpoint Protection) free of charge. For additional information about endpoint protection, please visit with your IT department or UND Tech Support.
To provide increased security, the North Dakota University System has implemented Duo two-factor authentication when accessing sensitive information in PeopleSoft HRMS Employee Self-Service and all areas of PeopleSoft Finance from on and off campus locations as of April 4th, 2017.
Two-factor authentication adds a second layer of security to your online accounts by requiring a second factor (phone or other mobile device). This prevents someone from accessing your account, even if they have your username or password.
For more information on Duo Two-Factor Authentication visit https://guide.duo.com
- Duo is no longer able to deliver automated phone calls for authentication to users with +86 numbers. International students attending UND with a +86 country code (China) may experience this issue. All other authentication methods, including phone-based options such as Duo Push and SMS passcodes, are not affected. Why might Duo phone callback authentication fail to Chinese +86 numbers?
Users can purchase an all-in-one security key through the Yubico website. In order to work with Duo Two-Factor Authentication, keys will need to be set up by a Duo admin and assigned to a user.
Campus users can now select to join the UND secure wireless network.
This secure wireless connection will include complete encryption between endpoints. The current UND wireless network relies on application encryption.
On the Welcome to the UND Network page, Select Click here to join the secured UND network to connect.
SafeConnect Network Access Control
SafeConnect is the University's network access control technology, which is used to provide wireless network services that comply with NDUS 1203.1 Network Security (NS) Standard.
- SafeConnect allows compliance with this policy by requiring users to authenticate with a username and password before allowing network access. Once authenticated, the system records the associated network address and how long it was used. That combination of data allows the campus to associate questionable network behavior with a specific user account and the person to whom that account was issued.
- If you are having trouble with SafeConnect, you may need to force log out. Please click the button below to log out of SafeConnect and then attempt to authenticate.
The Impulse policy key and an anti-virus program is required when using the UND network in the Residence Halls.
Secure file share is a secure way to send files that requires the sender to login with their NDUS.identifier credentials and also complete DUO authentication. Senders must be signed up with DUO first. After logging in, the sender can drag and drop files to send. Once sent, the recipient will receive an email that comes from the Sender’s Name [firstname.lastname@example.org]. The email will contain a link to the file/s. Once the recipient clicks on the link, they will be prompted to enter NDUS.identifier credentials.
There are laws and regulations that require the university to apply certain security safeguards around various categories of sensitive institutional data or information. University policies are written to support institutional compliance with these laws and regulations.
There has been an increase in fraud and scam emails. Currently this has taken the form of fraudulent job postings.
Fake job postings come as unsolicited emails sent to directly to your account or through online job-listing sites. We advise students, faculty and staff to avoid being scam victims by following these guidelines:
Beware if the email or job posting:
- Does not indicate the company name
- Comes from an email address that doesn’t match the company name
- Offers to pay a large amount for almost no work
- Offers you a job without ever interacting with you
- Asks you to pay an application fee
- Wants you to transfer money from one account to another
- Offers to send you a check before you do any work
- Asks you to give your credit card or bank account numbers
- Asks for copies of personal documents
- Says you must send payment by wire service or courier
- Offers you a large payment for allowing the use of your bank account – often for depositing checks or transferring money
- Sends you an unexpectedly large check
No legitimate employer will send payment in advance and ask the employee to send a portion of it back.
DO NOT provide any personal information -- especially social security numbers or financial information!