Skip to main content

Cornell University

IT@Cornell

security

Content (40)

Authorization Required for Data Release
If you have questions about the information on this page, please feel free to contact Celisa Manly, your manager, your division representative to the CIT Security Board (see number 4 in the list below), Dave Vernon (Assistant VP and Chief Technology Officer), or Wyman Miles (CIT Security Officer…
Manage Two-Step Login Devices
To go to the Two-Step Login Device Management Portal, either:
Log In Using Two-Step Login
To improve data security, Cornell has disabled Duo Mobile Passcodes. Plan to use one of the remaining authentication methods going forward. When you log in to a Cornell service that requires Two-Step Login, an authentication method will be triggered, allowing you to confirm your identity. 
Two-Step Login Support
Support Documentation For more information about the product that Cornell uses to provide Two-Step Login, see Duo Security's Guide to Two-Factor Authentication.
Add Two-Step Login to Your Online Service Using a Duo Application
Setting Up a Duo Application Duo Security supports integration with a broad range of applications and technologies, listed on the top page of their online documentation.
Questions About SSL Certificates
What do I do if my certificate is compromised? Important: Contact the IT Service Desk to revoke a certificate if: The server is compromised. The private key is compromised or lost. Your passphrase is compromised or lost. Are There Any Fees and/or Billing for SSL? There is no…
Generate SSL Certificate Signing Requests
Generate a Certificate Signing Request (CSR) file in Microsoft IIS 6.0 Without Removing the Existing Certificate To generate a new CSR without removing the current certificate, a temporary website must be created. This workaround will apply for IIS servers that currently have certificates…
Types of SSL Certificates
How Can I Request a Code-Signing Certificate? Send your request to the IT Service Desk. Specify the contact email address you would like to appear in your certificate. The IT Service Desk will initiate a code signing certificate invitation.
Renew or Request an SSL Certificate
How do I renew an SSL certificate? When your certificate's expiration date approaches, you will be notified by email that you need to renew.
Protect Your Identity
(For information about what phishing is, see How to Guard Against Internet Fraud.)
macOS Updates via Nudge
Nudge is an application to notify end users about macOS security updates they should install. Cornell IT Security Policy 5.10 requires all devices to be fully up to date with security updates within 30 days of release. 
Certified Desktop Privacy Policy
The University Privacy website provides guidance and detail regarding privacy, including specifics on Information Use at Cornell.
Troubleshooting Canvas-Zoom Integration Issues
Instructors or students accessing Zoom through Canvas can encounter issues opening Zoom. This might result in a blank screen area where the Zoom app should appear or an error message indicating Zoom failed to load, the session has expired, or the user is invalid. When troubleshooting Canvas-Zoom…
My Mac Cannot Sync Contacts After Opting in to Two-Step Login for Office 365
User Experience If you use the macOS Contacts app, you may not be able to sync your contacts after opting in to Two-Step Login for Office 365. What to Do Select System Preferences. Select iCloud. Deselect (uncheck) iCloud Keychain. Select OK.
My Security Key Does Not Work with Firefox for Two-Step Login
User Experience My USB security key does not work for Two-Step Login in the Firefox browser.
My U2F Security Key Prompts Me to Update
User Experience When you use your U2F security key, you see the following message:
Alternative Services for Certified Desktop
For units who have signed up for Certified Desktop, the following alternative security tools may be considered acceptable for meeting compliance requirements. Units should consult with the IT Security Office on deployment and reporting considerations.  If the solution you're seeking is…
How Often Will I Be Prompted to Log In to Office 365
Office 365 Applications and Mobile Apps You will rarely, if ever, need to authenticate with Two-Step Login when you use an app on your computer or mobile device to access Office 365. You might be prompted when you install a fresh copy of the software.
Staying Safe Online at Cornell
Get Help for IT Security Problems Your NetID, along with other login information you use at Cornell, secures a host of services that are available to you as a member of the university community. Following some straightforward practices and guidelines will keep your identity, computer,…
Endpoint Management Tools
Endpoint Management Tools helps IT staff automate the deployment and ongoing maintenance of software for desktops and laptops in compliance with university policy. Units adopting this service can expect to increase the technician-to-workstation ratio over that achievable with local point solutions…

At Cornell we value your privacy. To view
our university's privacy practices, including
information use and third parties, visit University Privacy.