Curent Status - Persona Group Management
Planned Maintenance - Persona Group Management
Persona Group Management (Last 90 days)
System History - Persona Group Management
Planned maintenance - Persona Group Management
--- Followup Post ---
Codes generated from the Duo Security One-Time Passcode web application should be working correctly now.
--- Followup Post ---
Multifactor authentication has been enabled.
We have seen issues where codes generated from the Duo Security One-Time Passcode web application are not working correctly, but codes generated from the phone app and push notifications are working correctly.
We are investigating the issue with codes generated from the web application, and will update when we have more information.
--- Original Post ---
On July 21st at 3:00 PM EST, we will be enforcing multifactor authentication (MFA) via the Duo service to all username/password logins to the OIT Persona group management service.
All user accounts which authenticate via username/password and are enrolled in Duo will be required to supply a second factor when authenticating.
Accounts which are not enrolled in Duo will not be required to supply a second factor.
Authentication to the API using a registered access token will not be required to supply a second factor.
By default, authenticating using a username/password with an account enrolled in Duo will send a push notification to the device registered with the Duo enrollment, which must be accepted before the login process will continue successfully. If the push notification is denied or times out, the login will fail.
Alternatively, a Time-Based One Time Password (TOTP) may be supplied after the normal user password, separated by a pipe character (|). TOTP codes may be generated by the Duo application on a registered device, generated by a registered Yubikey (blue security keys will not work), or generated via the Duo Security One-Time Passcode web application at https://go.ncsu.edu/dc
If you have any questions or concerns regarding this change, please contact OIT_WEB_SERVICES@help.ncsu.edu
Planned maintenance - Persona Group Management
--- FOLLOWUP POST ---
The Persona service has been migrated successfully, and is now available at https://persona.oit.ncsu.edu
The previous hosting location should redirect correctly to the new location, and the go link has been updated.
--- ORIGINAL POST ---
The Persona Group Management service will be unavailable on Thursday Dec 17 from 11:30AM to 1:30PM.
The service will be migrated from the hosting platform in Engineering to hosting in OIT.
The service will be available at a new URL following the migration, which will be announced after the migration is complete.
A redirect will be implemented for the current Engineering hosted URL, so any client that follows redirects should not see any service interruption following the migration.
The GoLink (https://go.ncsu.edu/persona) will be updated to point to the new location after the migration as well.
Please contact OIT_IWS@help.ncsu.edu if you have any questions or concerns regarding this migration.
Degradation - Persona Group Management
--- FOLLOWUP POST: 2020-12-01 16:03:33 ---
Groups have been restored, and job processing has been re-enabled.
--- ORIGINAL POST: 2020-12-01 15:22:24 ---
Due to a configuration mishap in a test instance, the Active Directory groups managed by Persona have been accidentally deleted. We are working with the AD team to restore the deleted groups, so that group nesting in other AD groups is restored as well. Until these groups have been restored, we have paused the group membership job queue to prevent creation of new groups with the same name. Access to systems managed by these groups will be degraded or unavailable until we fully restore the deleted groups.