100 percent Staff MFA Enrollment for Outlook/O365
Contact Us
Office of Information Technology
4400 Massachusetts Avenue NW
Washington, DC 20016-8019
United States
Sep. 30, 2021 Retire 90 Day/8 Character Password Policy
Option for selecting the 90 Day/8 Character password policy is removed from the myAU portal. Users are only able to subscribe to the 1 Year/16 Character passphrase.
Sep. 30, 2021 Duo MFA Mandatory for Staff Email and O365
All staff are required to utilize Duo MFA to authenticate to Outlook and Office 365 applications.
Oct. 28, 2021 Duo MFA Mandatory for Faculty and Student O365
All faculty are required to utilize Duo MFA to authenticate to both Outlook and Office 365 applications. Students require Duo MFA to authenticate to Office 365 applications.
Nov. 18, 2021 2-Step Verification Mandatory for Students & Alumni
All students and alumni are required to enable Google's 2-step verification to authenticate to their AU Gmail accounts.
Frequently Asked Questions
- Why do we need two-factor authentication?
Login credentials are more valuable than ever and are increasingly easy to compromise. Over 90% of breaches today involve compromised usernames and passwords. Two-factor authentication enhances the security of your account by using a secondary device to verify your identity. This prevents anyone but you from accessing your account, even if they know your password. Enabling two-factor authentication for O365 dramatically reduces the chance that someone can access or send unauthorized messages from your email account, or access documents and other data stored in your OneDrive. - Why do we need stronger passwords?
Industry password guidance points to password length as a better metric for security than password complexity (e.g., combinations of upper, lower case, numbers, and special characters). Many staff and faculty are already onboard with the 16-character minimum, but there are still some users that will need to be switched to adopt best practices. By adopting the 16-character policy, (which simply calls for longer, less complex, passwords) users can author passwords that are more memorable, can be retained longer, and are above all, harder to “crack”.