The University is required to begin fully enforcing its Two-Step for O365 policy, which has been in place since July 2022 but has not been universally enforced. As of August 1, 2023, all Penn O365 email users will be required to use Two-Step Verification.
Details
- There are approximately 4500 users across campus not yet using Two-Step for O365 email.
- Campus O365 administrators with out-of-compliance users are being sent user lists along with instructions they can email to these users.
- The vast majority of these users are already enrolled in Two-Step and have been using it during PennKey login; they just have not yet enabled it for O365 email.
- These users can turn on Two-Step for O365 following the instructions at: https://www.isc.upenn.edu/how-to/penno365-two-step-verification#Self-enrollment-application.
- On the day of enforcement, users will get the Two-Step prompt at O365 login.
- School/Center admins will be able to grant short-term, emergency exclusions using a dedicated Grouper group (expires in two months). If your staff believes that a user requires a permanent exclusion from the Two-Step for O365 policy, a variance must be requested from the IT Policy Committee (ITPC). Authorized administrators will receive instructions for granting emergency exclusions and requesting variances.
- Variances that have already been granted by ITPC will continue to be honored after the deadline.
More Information or Questions
- PennO365 with Two-Step Verification help site – Information on Using O365 Two-Step, Self-Enrollment Application (users), Enabling O365 Two-Step (support providers), and FAQs.
For additional questions contact: James Brewer, Director of IAM, at brewerj@upenn.edu.