Summer 2019

Making our enterprise systems more secure

IST Communications

We're making our central systems more secure while providing our clients with an improved user experience. Here's how.

save timeSingle sign-on

Single sign-on (SSO) provides a secure method of accessing multiple web-based systems and applications without being required to log in to each one. As a user, you enter your credentials once and move seamlessly between supported applications. It's more secure, and you'll save time.  

Starting a session

All University of Waterloo employees and students will enter their userid@uwaterloo.ca address and WatIAM password when logging in to an application that supports single sign-on.

Ending a session

Simply close your browser (all browser windows) to end your SSO session. 

Want your application to support SSO?

It must be using the Active Directory Federation Service (ADFS) first.   

  • Need help moving to ADFS? Login and complete the service request form.   
  • Already using ADFS? You're all set! Your application supports single sign-on.
 

A couple of things to remember

SSO is browser specific

If you open and begin working in a different browser, you will be prompted to begin a new SSO session. 

Updated login pages 

Login pages for single sign-on will look different than the login pages you may be used to seeing.

SSO session lengths

The length of a SSO session will depend on the specific application, and may range from one to 24 hours.

 

Applications supporting single sign-on

A number of campus systems are already supporting single sign-on, and others, like Quest and Workday, will be added soon.

  • LEARN
  • Microsoft Office 365 (staff)
  • CareerHub
  • WebEx
  • Unit4
  • GoSignMeUp
  • Qualtrics
  • PebblePad
  • Portal
  • Bonfire
 

Learn more about SSO

Visit the Single Sign-on website to learn more about this service, discover which applications are supporting SSO, and explore help resources, https://uwaterloo.ca/single-sign-on.   

secure cloudTwo-factor authentication (2FA)

2FA at Waterloo is not new, but many of our central systems are now supporting it, including LEARN, Quest, Concur, Unit4, and Workday! Here's a quick reminder on what it is and how you can opt-in, today.

What is 2FA? 

Two-factor authentication adds an extra layer of security to your University accounts. Verifying your identity using a second factor (like your phone or other mobile device) prevents others from accessing your accounts, even if they know your password.

How does it work?

Logging in to 2FA protected sites and applications is as simple as accepting a notification on your phone, plugging in an authenticator, or entering a PIN from a text message or phone call. Enrol once to protect all of your supported services.

Enter your password

laptop

Verify your identity

mobile device

You're logged in!

check mark

 

Get started

Users who want to opt-in to protect their accounts with 2FA can enrol by visiting https://uwaterloo.ca/2fa and clicking the “Get started now” button.