Starting the week of July 22, some users are prompted with a "Sorry, a security policy is preventing access" or "Register or enroll your device" message when using some Office applications (namely Outlook and Teams).

Example of "Sorry, a security policy..." error message

Example of "Register or enroll your..." error message

The new behavior appears to be a late onset result of security changes implemented in prior weeks.

As a quick workaround, affected users can access their UNM email at https://lobomail.unm.edu or the web versions of the Office applications at https://www.office.com

Thus far, the following consistently resolve the issue for affected users:

1) Ensure your UNM account is correctly linked to Windows: 

• In Windows, click Start -> Settings -> Accounts -> Access work or school
• Ensure there is not a "Fix" button or other issue with your NetID@unm.edu account. If there is, click the button and re-authenticate.

2) Ensure your UNM account is correctly linked in Office:

• Open Word (or Excel) -> Look at the top right corner of the window to see if there is an exclamation point next to your name/username (NetID@unm.edu) -> If yes, click the warning and re-authenticate

3) Upgrade to the latest Office version (especially if you currently use Office 2016 or 2019):

• UNM students, faculty, and staff can download the latest version of Microsoft 365 (Office) from https://www.office.com/ by logging in, selecting the "Install and more" dropdown, and selecting "Install Microsoft 365 apps."

4) If you are affected by the issue and use one of the following, open a Help.UNM request for further assistance:

• PowerShell modules accessing Exchange, SharePoint, or Microsoft Graph scopes that are served by Exchange or SharePoint
• PowerQuery extension for Excel
• Extensions to Visual Studio Code which access Exchange or SharePoint
• The new Teams 2.1 preview client gets blocked after sign out due to a bug. This bug should be fixed in a future service update.
• Windows Server
• Surface Hub
• Windows-based Microsoft Teams Rooms (MTR) systems

We are aware of a global outage regarding CrowdStrike.  UNM does not use Crowdstrike and we are not aware of any impact on the university at this time. Any issues with IT services can be reported to the Service Desk.

To apply important system-level security patches, UNM IT will be upgrading production Oracle databases and RedHat servers beginning Saturday, July 27th, 2024 starting at 10:00 PM completing at 2:00 AM on July 28th, 2024.

These services include:
BANP (Banner)
ODSP (ODS)
AWP (AppWorx)
BOOMI
RPTP (My Reports)
BANTR (Banner Training)
B2BMON (Marketplace)
WCMP (Web Content Management)
ORAP1 (eSurvey & password synchronization)
CONP (Confluence)
PINNP (Pinnacle)
LEARNP
LoboWeb
Apex Banner & Apex ODS
ODS IA Admin
uAchieve
business.unm.edu
Central Authentication Service (CAS)
cPanel
CUPS Print
Deparmental web hosting
DSS
DupBusters
jobdescriptions.unm.edu
ListServ
LoboCloud Linux systems (uptime > 30D)
Parchment
Scuti
sunshine.unm.edu
www.unm.edu

This communication applies to the following releases: Oracle Updates (15819) & Quaterly Reboots of Redhat Systems (15798).

Onate Hall first floor and Tow Diehm no wired network connectivity at this time.

all LAN (ethernet) devices - no activity.

As we approach the fiscal year-end close, the Office of the CIO wants to bring to your attention a rise in email-based threats. These threats often involve finance-related keywords in the subject lines, such as 'Invoice' and 'Payment', including possible links to a shared file.

Please take the following precautions:

1. Be Extra Cautious: Alert your teams to be vigilant for any suspicious email activity.
2. Use Reporting Tools: Encourage your team members to use the 'Report' and 'Report Message' buttons for any emails that seem suspicious.
3. Verify Emails: If you know the sender and have a confirmed and trusted phone number, call them at the known good number to confirm the validity of a questionable email.  Compromised email accounts and false phone numbers listed in phishing emails are often answered by attackers and can be used to convince you to take an action that will result in compromise of your account, and compromise of UNM data.

FastInfo Answer #7930 has additional information on phishing:  What is Phishing Email? (custhelp.com).

For assistance with UNM IT services, please contact UNM IT Customer Support Services at 505-277-5757. Hours of operation are Monday – Friday, 7:30 a.m. to 5 p.m., except during University Holidays.   

Due to the healthcare nature of UNM Health and Health Sciences (HHS), there may be variations to services and support for HHS students, faculty, and staff.? If you experience any issues regarding HHS technology services, please contact the following:?During regular business hours, 8-5, Monday-Friday, contact the Health Sciences IT Service Desk at 505-272-1694.? Outside of regular business hours contact the Health IT Service Desk at 505-272-3282 (2-DATA).? 

It has been reported that calls to UNM numbers from out of state Tmobile and AT&T cell phones are being routed to other businesses, personal cell phones, or receiving silence.  Calls that reach these other locations are also reported to have one way speech.  We believe this issue is a larger national issue that is affecting other businesses and users outside of UNM.  We have reported the issue to Lumen and will provide updates as we get more information. 

On behalf of the Chief Information Officer,

At UNM, we all have an important role to play in keeping information secure and private. As part of UNM IT's ongoing efforts to improve our security approach, we want to make you aware of an upcoming enhancement to protect against online threats. This upgrade, called BloxOne Threat Defense, is designed to shield both university and personal computers from accessing websites known for hosting harmful software like viruses or ransomware. Once implemented, this upgrade will provide protection for computers connected to UNM's network, Wi-Fi, VPN, or guest Wi-Fi, ensuring a safer online experience for everyone.

NOTE: These changes apply to UNM networks including the branch campuses. Changes to network services provided by and to Health and Health Sciences, if any, will be communicated by and coordinated through Health and Health Sciences CIO Notices.

What does this mean for you?

Beginning 06/11/2024, access to known malicious web sites will be blocked. Users will be redirected to a web page indicating they are attempting to access a malicious web site and provided information if they believe this is an error or if they need access to the web site to meet legitimate research, academic, or administrative business purposes. See FastInfo 7972 for additional information.

All institutions, public and private, are subject to ransomware, malware and other cyber threats. UNM BloxOne Threat Defense is a hybrid cybersecurity solution that leverages Domain Name System (DNS) as the first line of defense to detect and block cyber threats. BloxOne Threat Defense only blocks verified web sites with a high severity threat and a high confidence accuracy rate. Sites are not blocked based on content or application.

For assistance with UNM IT services, please contact UNM IT Customer Support Services at 505-277-5757. Hours of operation are Monday – Friday, 7:30 a.m. to 5 p.m., except during University Holidays. 

Due to the healthcare nature of UNM Health and Health Sciences (HHS), there may be variations to services and support for HHS students, faculty, and staff.  If you experience any issues regarding HHS technology services, please contact the following: During regular business hours, 8-5, Monday-Friday, contact the Health Sciences IT Service Desk at 505-272-1694.  Outside of regular business hours contact the Health IT Service Desk at 505-272-3282 (2-DATA). 

To ensure continued security and stability, UNM IT will be applying Windows Updates and rebooting servers on 07/28, 4:00 AM - 6:00 AM.

This month's updates are listed here:

https://www.catalog.update.microsoft.com/Search.aspx?q=server+2024-07

The following services will be intermittently unavailable during the outage window:

AppXtender
Confluence
eVisions/FormFusion/Intellicheck
FAMIS
Help.UNM/Cherwell
IdentityIQ (NetID.unm.edu)
Pinnacle Reports
TMA Work Order System

Other Windows servers and services (not listed above) will be intermittently unavailable during the standard patching window described at http://it.unm.edu/availability/ (under "Hosted Windows Servers").

Starting at 8am on Wednesday, July 31st, 2024, UNM IT will perform the Census Freeze for Federally mandated data collection. Registration will not be paused for this event. Please contact UNM IT with any questions, at (505)277-5757

To ensure continued security UNM IT is performing maintenance on several SQL Servers on 8/1/24 from 5:00pm-8:00pm. During this maintenance window the targeted SQL Servers will be intermittently unavailable. Service owners for these targeted servers have been notified and are aware of the SQL Server patching maintenance window. Moving forward, UNM IT will be performing this maintenance quarterly once in February, May, August, and November. A communication will be posted to IT Alerts before each change.

Impacted services:
CFAWSQLMDBP01    College of Fine Arts AppQuest
EM153OBDB01    OnBase Prod
CT153CSQL01    Production Crestron Web and Application Server
EL153ECSCD01    SDDC - managed by IT Academic Tech
ELWHVMDBP01     CE Restricted Operations Service "Home Visiting"
ENT153AADC01    AD
ENT153IIQDB01    IIQ Prod
ENT153SCCMDB01    SCCM
ENTWEUCMDBP01    Horizon 8
FMCCUREDBP02    CCURE - Production DB Server
FMWAUTOMDBP02 FM Automotive
FMWFMDBP01    Fuelmaster
FMWWEBCWEBP01    PPD WebCTRL
FSDWFINMDBP01    ProFXEngagement
GEOISSMDP01    GEO ISSM Platform - SEVIS
IAWTMMDBP01    TMA - Teammate
ISPOWCMDBDBP01 ISPO CMDB - Prod
ISS153CSDB01    Capital Space MSSQL Database
IT153CSMDB01    9.2 Cherwell Prod
IT153TMADB01    TMA
ITWPWRPMDBP01    Power Platforms (Power Apps and Power BI)
ITWSQDBP01    SonarQube
OSA2WCLMDBP01    CL Application
PDWAVGMDBP01    CCure-Avigilon-Middleware
SLWEMSMDBP01    EMS Application
SWEFCWMDBP01     EMSS production

To ensure continued security UNM IT is performing maintenance on several SQL Servers on 8/1/2024 from 11:30am-1:00pm. During this maintenance window the targeted SQL Servers will be intermittently unavailable. Service owners for these targeted servers have been notified and are aware of the SQL Server patching maintenance window. Moving forward, UNM IT will be performing this maintenance quarterly once in February, May, August, and November. A communication will be posted to IT Alerts before each change.

Impacted services:
Commvault
SolarWinds
NetApp Snap Protect

As a part of ongoing service improvement efforts, UNM IT Data Networks will be performing a service maintenance modification between the hours of 12:00pm on 8/3/2024 and 4:00am on 8/4/2024. During this time all portions of the Albuquerque Campus Local Area Network will experience a rolling outage window as the core campus routers are replaced with new equipment. The potential exists for multiple intermittent outages as modifications are implemented and tested by Data Networks staff. If you experience a service outage outside of the previously indicated window, please open an incident report through the UNM Service Desk and Data Networks staff will work with you to remediate the issue in a timely fashion.

Specific service availability can be verified at https://it.unm.edu/major-outage-v2/

To improve and standardize user experience (while modernizing the backend method used for password resets), UNM IT will make a slight change to the known ("I Know My Password") password reset process on Tuesday, August 6 between 8:00 AM and 9:00 AM.

After implementation, the "Reset My Password" tile in IIQ (netid.unm.edu) will redirect to a Microsoft password reset screen. The functionality is identical to the old screen (although it looks slightly different) - simply enter your new password twice, click "Submit" and your password change will be processed (almost instantly for cloud services like M365, Canvas, MyUNM, etc.).

Thank you for your patience and understanding as we work to improve user experience and streamline our services.

To stay current with vendor's certification, IT will be updating the Shibboleth certificate on Wednesday, 8/7/2024 between 7 AM and 8 AM. Service outage is not expected.

Top services that will be impacted:
- Chrome River
- Learning Central
- Wepa Printing
- Science Direct
- LoboCash Account

On July 26th at 5:45 AM MTN, Oracle will be upgrading the Fast Info/Right Now site. During this time, the site will be unavailable. The outage window should last until approximately 6:00 AM.

If you have any questions or concerns, please feel free to reach out to the service desk at (505) 277-5757

Thank you!