![Page 1: Session Title: Banner Authentication and Login Validation Presented By: Allen McGehee Institution: Mississippi College September 13, 2015](https://reader036.vdocument.in/reader036/viewer/2022062517/56649f285503460f94c40587/html5/thumbnails/1.jpg)
MBUG 2015
Session Title: Banner Authentication and Login ValidationPresented By: Allen McGeheeInstitution: Mississippi CollegeSeptember 13, 2015
![Page 2: Session Title: Banner Authentication and Login Validation Presented By: Allen McGehee Institution: Mississippi College September 13, 2015](https://reader036.vdocument.in/reader036/viewer/2022062517/56649f285503460f94c40587/html5/thumbnails/2.jpg)
Please turn off your cell phone If you must leave the session early, please
do so discreetly Please avoid side conversation during the
session
Session Rules of Etiquette
![Page 3: Session Title: Banner Authentication and Login Validation Presented By: Allen McGehee Institution: Mississippi College September 13, 2015](https://reader036.vdocument.in/reader036/viewer/2022062517/56649f285503460f94c40587/html5/thumbnails/3.jpg)
Mississippi College mc.edu
Founded in 1826 FTE = 4,921 Main Systems: Ellucian Banner, Google Apps
and Moodle
![Page 5: Session Title: Banner Authentication and Login Validation Presented By: Allen McGehee Institution: Mississippi College September 13, 2015](https://reader036.vdocument.in/reader036/viewer/2022062517/56649f285503460f94c40587/html5/thumbnails/5.jpg)
Our Story – Single Sign On(SSO)
![Page 6: Session Title: Banner Authentication and Login Validation Presented By: Allen McGehee Institution: Mississippi College September 13, 2015](https://reader036.vdocument.in/reader036/viewer/2022062517/56649f285503460f94c40587/html5/thumbnails/6.jpg)
Our Systems MyMC – Central Authentication Service(CAS) Ellucian Banner
◦ Self Service - CAS◦ INB – DB Authentication
Google Apps - CAS◦ Gmail◦ Calendar◦ Drive
![Page 7: Session Title: Banner Authentication and Login Validation Presented By: Allen McGehee Institution: Mississippi College September 13, 2015](https://reader036.vdocument.in/reader036/viewer/2022062517/56649f285503460f94c40587/html5/thumbnails/7.jpg)
Our Systems - Authentication Authentication Flow
◦ Creation Banner (Applicants/Enrolled) -> Active Directory(AD)/Google
Apps AD -> GOBTPAC table
◦ Authentication to Banner Self Service MyMC Username/Passsword against AD Redirect to BannerSS Yale PL/SQL CAS Client Verify CAS Ticket and cross reference GOBTPAC table for
external user id Redirect to requested page
![Page 8: Session Title: Banner Authentication and Login Validation Presented By: Allen McGehee Institution: Mississippi College September 13, 2015](https://reader036.vdocument.in/reader036/viewer/2022062517/56649f285503460f94c40587/html5/thumbnails/8.jpg)
Our Story – Phishing
![Page 9: Session Title: Banner Authentication and Login Validation Presented By: Allen McGehee Institution: Mississippi College September 13, 2015](https://reader036.vdocument.in/reader036/viewer/2022062517/56649f285503460f94c40587/html5/thumbnails/9.jpg)
Our Story – Phishing
![Page 10: Session Title: Banner Authentication and Login Validation Presented By: Allen McGehee Institution: Mississippi College September 13, 2015](https://reader036.vdocument.in/reader036/viewer/2022062517/56649f285503460f94c40587/html5/thumbnails/10.jpg)
Our Story- Compromised Accounts
![Page 11: Session Title: Banner Authentication and Login Validation Presented By: Allen McGehee Institution: Mississippi College September 13, 2015](https://reader036.vdocument.in/reader036/viewer/2022062517/56649f285503460f94c40587/html5/thumbnails/11.jpg)
Education Change Passwords Block Bogus MyMC URL’s Tighten Spam Settings in Google Apps Got Your Back – Delete Emails Antivirus
MC’s Response
![Page 12: Session Title: Banner Authentication and Login Validation Presented By: Allen McGehee Institution: Mississippi College September 13, 2015](https://reader036.vdocument.in/reader036/viewer/2022062517/56649f285503460f94c40587/html5/thumbnails/12.jpg)
Block Suspicious IP’s in Africa Address Robo Login Pattern: reCAPTCHA Address potential 2 Factor Authentication:
Federated Login (Future)
MC’s Response cont’d
![Page 13: Session Title: Banner Authentication and Login Validation Presented By: Allen McGehee Institution: Mississippi College September 13, 2015](https://reader036.vdocument.in/reader036/viewer/2022062517/56649f285503460f94c40587/html5/thumbnails/13.jpg)
reCAPTCHA 2.0 – google.com/recaptcha
◦ Recaptcha 1.0:
◦ Recaptcha 2.0:
ReCAPTCHA
![Page 14: Session Title: Banner Authentication and Login Validation Presented By: Allen McGehee Institution: Mississippi College September 13, 2015](https://reader036.vdocument.in/reader036/viewer/2022062517/56649f285503460f94c40587/html5/thumbnails/14.jpg)
ReCAPTCHA Walkthrough
![Page 15: Session Title: Banner Authentication and Login Validation Presented By: Allen McGehee Institution: Mississippi College September 13, 2015](https://reader036.vdocument.in/reader036/viewer/2022062517/56649f285503460f94c40587/html5/thumbnails/15.jpg)
ReCAPTCHA Walkthrough
![Page 16: Session Title: Banner Authentication and Login Validation Presented By: Allen McGehee Institution: Mississippi College September 13, 2015](https://reader036.vdocument.in/reader036/viewer/2022062517/56649f285503460f94c40587/html5/thumbnails/16.jpg)
ReCAPTCHA Walkthrough
![Page 17: Session Title: Banner Authentication and Login Validation Presented By: Allen McGehee Institution: Mississippi College September 13, 2015](https://reader036.vdocument.in/reader036/viewer/2022062517/56649f285503460f94c40587/html5/thumbnails/17.jpg)
ReCAPTCHA Walkthrough
![Page 18: Session Title: Banner Authentication and Login Validation Presented By: Allen McGehee Institution: Mississippi College September 13, 2015](https://reader036.vdocument.in/reader036/viewer/2022062517/56649f285503460f94c40587/html5/thumbnails/18.jpg)
2 Factor Authentication◦ Something You Know / Something You Have
Google Apps Security◦ Text, Call, Authenticator App, Security Key,
Apps Specific Passwords Hurdles
◦ Implement Federated Authentication with MyMC
◦ Google Apps Password Sync (GAPS)◦ Figure out how to sync/inject AD Attributes into
the SSO/SAML flow (group memberships)
Federated Authentication
![Page 19: Session Title: Banner Authentication and Login Validation Presented By: Allen McGehee Institution: Mississippi College September 13, 2015](https://reader036.vdocument.in/reader036/viewer/2022062517/56649f285503460f94c40587/html5/thumbnails/19.jpg)
Questions