| Warning | ||
|---|---|---|
| ||
Policy mandates that 2FA is required whenever any person working from a remote location utilizes administrative credentials to access a server that is used to store or process confidential or Category I university data. This includes cases where an initial login is performed with non-administrative credentials and privileges are escalated elevated after a session is established (e.g. via sudo or su). This policy only covers users with administrative privileges. Users who do not have administrative credentials to a server are not required to use 2FA to authenticate to that server. |
...