Jump to main content

Office of Information Security

The mission of the Office of Information Security is to facilitate the following items in a secure manner: the education of students, deliver quality education, conduct research, and to ensure staff can serve the University mission and their departmental functions.

Our goals are to defend the institutions data, systems, and networks from misuse, damage and loss.


We have deployed Microsoft Multi-factor Authentication!

At this time we have deployed MMFA to all of IM&T and 30 other users in administrative departments.  If you are interested in participating in the MMFA opt it program please see the information below.  Once you have set up your second factor please send an email to it.security@unco.edu with the Subject: "Enroll Me".  I will be adding people on the Monday of the following week.

Microsoft Multi-factor Authentication when accessing outlook from off campus.

Why are we adding multi-factor?

To add another layer of defense to prevent the abuse of compromised credentials.

What to expect:

When you try to access outlook while not connected to the UNC administrative network you will be prompted to authenticate with a second factor.

Depending on how you choose to set this up the multi-factor system will call or text your phone with a code, ask for a code from your authentication application, or simply prompt you with an allow or deny from the authentication application. You can set up your preferred method of multi-factor here: https://aka.ms/MFASetup

You will be able to exempt your device for up to 60 days before being prompted to use your second factor again.

Tips: Go to https://aka.ms/MFASetup and configure your account to use the Microsoft Authenticator application on your mobile device and use the “Notify me through app” option. I think this makes the process easier.

Don’t use your office number as your second authentication factor for access. If you are on the UNC admin network, you will not need to use a second authentication factor.

Be mindful:

If you get a multi-factor prompt from the application but you are not trying to login click the Deny button and report the attempt to it.security@unco.edu.

Additional resources: https://docs.microsoft.com/en-us/azure/active-directory/user-help/multi-factor-authentication-end-user-manage-settings https://docs.microsoft.com/en-us/azure/active-directory/user-help/multi-factor-authentication-end-user-troubleshoot