In collaboration with UConn Audit and Management Advisory Services (AMAS), ITS reviewed the configurations of our Microsoft 365 environment, and we have been making changes to enhance our security posture. On December 2nd, we will be implementing the following:
- Additional sender information: On inbound emails, users may see a question mark in place of a profile picture. This means that the sender has failed authentication checks and may not be a legitimate sender.
- “Stay Signed In?” Prompt: Users will no longer be asked if they wish to stay signed in to Microsoft 365. We enabled a new Idle Session Timeout policy with the first round of changes, and the prompt is now non-functional.
- Outlook integrations with storage providers: Users will be unable to directly connect UConn Outlook to additional storage providers, such as Box, Dropbox, Google Drive, Egnyte, and non-UConn OneDrive.
- Call transcription in Teams: Users will be able to transcribe a Teams call. This capability is currently only available for Teams Meetings. Call participants will be notified when transcription is enabled.
- User-initiated trials of Microsoft 365 software/services: Users will be unable to start a free or paid trial of Microsoft 365 products with their UConn Microsoft 365 account.
- Modern authentication for SharePoint applications: Applications that access SharePoint Online resource must use “modern authentication,” a secure login method. Third-party applications that use the legacy “basic authentication” will be blocked.
For more information, contact: Technology Support Center at techsupport.uconn.edu