Division of IT: TechKnowledge

E-Mail Login
Blackboard
myZou
New to MU?
ERes

Departments
Faculty/Staff
Students
Retirees
IT Pros

Division of IT

Faculty/Staff Edition, February 2008

Emergency Mass Notification System Update

A devastating F5 tornado has struck the campus. You wonder if classes are cancelled as your cell phone rings. It's a voice message: "Due to the widespread tornado damage, classes have been cancelled. Check mualert.missouri.edu for updates."

In case of emergency or on-campus threat, the University of Missouri can notify you (students, faculty and staff on each campus) by voice and text message as well as e-mail. All you need to do is add your emergency contact information to the Emergency Mass Notification System (EMNS). Individuals are responsible for keeping their own information up to date.

Faculty and staff should add or update their information in UM Web Applications.

Click Web Applications.
Log in using your PawPrint (SSO ID) and password.
Click Employee Information.
Click University Emergency Info.
Enter your contact information.
Click Submit Changes.
Log out.

Project to Protect Social Security Numbers Underway

The University has initiated the SSN Remediation Project to protect social security numbers (SSN) used in the course of University business. The project's goal is to remove SSNs from all individual databases and store each SSN only once in an encrypted, highly secure vault.

The approach is analogous to a coat check service or safety deposit box in a bank vault. Such services accept delivery of an item or object from a customer and securely hold it. In exchange for the item, the service provides the customer with a token in the form of a claim ticket or key. When the customer seeks to recover the item, they present their claim ticket or key; the service retrieves the item and delivers it to the customer or the customer's designee.

In the case of the SSN vault, the item secured is a social security number. The University's SSN vault is more restrictive than the analogies above, in that mere possession of the ticket or key is not sufficient to retrieve an SSN. The business process or person seeking the SSN must also prove who they are, and they must be pre-authorized to retrieve the number.

To make this work, any University business activity or process that acquires an SSN from an employee, student, customer, patient, vendor, etc., must be altered to place the SSN into the vault. The business process must take the value on the "claim ticket" issued by the vault — an alternate ID number — and save it into the recordkeeping system where the business process had previously recorded the true SSN.

Any business process that requires the true SSN thereafter (e.g., tax reporting or foreign student registration) must be altered to submit the alternate ID number to the SSN vault to re-acquire the SSN. In most cases we'll define the security system to limit use of the true SSNs to the government agency requiring the data.

The SSN vault and altered business processes improve our overall security posture by reducing the number of data systems holding SSNs. Instead of storing them in dozens of places as we do today, we will have only one place where we must maintain high security. Additionally, access to the vault must be pre-approved, and the vault software will log and audit all retrievals. The end results are that fewer people will routinely handle SSNs, and derivative documents (such as spreadsheets, email messages, and other electronic records) containing data from our administrative databases will not reveal SSNs.

The SSN Remediation project began last summer. The first systems to be integrated were the alumni databases for each of the four campuses and the Identity Management system used to manage network logon accounts and electronic mailboxes. The next phase will focus on the Financial, HR, Payroll, and Benefits systems.

It is important to note this effort is not solely a technology initiative; it is a complete rethinking of how we use SSNs in our daily business processes. You'll no doubt hear more about the project in the coming months, including in future editions of TechKnowledge.

TigerNet Wireless Network to be Removed from Service

MU currently supports two wireless data networks: TigerNet and TigerNet1x. The Division of Information Technology is planning to remove the TigerNet wireless network at some point in the near future. We have not yet set a date for this conversion; however, users should start using TigerNet1x instead of TigerNet now to ensure a seamless transition. We will support only TigerNet1x after the change.

TigerNet uses the WEP protocol for data privacy. WEP has shortcomings:

WEP is not very secure. The WEP key is easily cracked, making it relatively easy for someone to eavesdrop on your wireless data communications, including web browsing, e-mail, and file transfers. It's also fairly easy for people with no MU affiliation to obtain the WEP key from someone working at MU, allowing them to access the wireless network and use our resources (such as Internet bandwidth).
The WEP key must be distributed to all wireless network users and configured on every wireless computer. In addition, the key must be changed occasionally to limit, at least for a while, the number of non MU-affiliated users on the wireless network. This is a support problem and is inconvenient for everyone.

TigerNet1x uses the 802.1x protocol to improve data privacy and network access and has the following benefits:

802.1x allows wireless network access via PawPrint (SSO ID) authentication. Your PawPrint and password are strongly encrypted to protect them against theft. Only users with an MU affiliation have a PawPrint, thus preventing nonaffiliated persons access to our network.
There is no key to be distributed, which is much more convenient for users and support staff.
802.1x supports several types of data encryption. When properly configured, it provides very strong encryption, making it all but impossible to eavesdrop on wireless communications.

For information on how to configure your wireless-enabled laptop or other device to use TigerNet1x, please visit the IT KnowledgeBase. For additional information about wireless networking on campus, please refer to the Division of IT's Wireless page.

CMS Puts Web Editing Within Reach

MU's Cascade Content Management System (CMS) is a new tool for building, organizing, and maintaining Web sites. The CMS provides a space in which Web designers and managers can create standardized templates for consistent look and feel throughout their sites. Content contributors can then add or modify Web content without needing to know how to use HTML editors such as Dreamweaver. The CMS allows Web managers to:

Delegate maintenance responsibilities so that nontechnical staff can update content
Use the same content in multiple places and/or publish content in multiple formats (HTML, PDF, Word, etc.)
Control access privileges so that only designated users can change design or structure
Schedule automatic publishing at specific times or dates
Remind contributors to review or update content regularly
Check sites for broken links, spelling errors, or accessibility issues

Setting up a site in the CMS requires a greater initial time investment, but once a site is created, it's easy to allow nontechnical users access to update site content. This can be especially useful for departments or organizations that don't have a designated Web editor with the technical skills to use HTML editors or other Web management tools.

That's why the MU Faculty Council recently moved their site (facultycouncil.missouri.edu) to the CMS. Leah Cohn, Faculty Council Executive Committee member, said, "The ability to maintain a current and accurate website directly impacts not only the ability of the council to communicate to all faculty, but the ability of the Faculty council to function. Previously, we had to rely on the kindness of IT personnel in a number of divisions on campus to update the site as time became available. We will now be able to handle this duty routinely on our own allowing us to post agendas, minutes of meetings, and supporting documentation for discussion items as well as keeping policy handbooks current."

Some of the MU Web sites that are using the CMS include:

The official MU Web site (www.missouri.edu)
Admissions (admissions.missouri.edu)
College of Education (education.missouri.edu)
Office of the Chancellor (chancellor.missouri.edu)
Undergraduate Research (undergradresearch.missouri.edu)

MU's Office of Web Communications manages Cascade CMS site deployment. For more information about the CMS or to get a Project Proposal form (required to obtain a CMS site), visit webcom.missouri.edu/tools/cms/.

Web Hosting Migration Project Update

The Division of Information Technology's Departmental Web Hosting Service (DWHS) offers reliable Web hosting space to departments and organizations. Many departmental sites have been hosted on Bengal in the past. The Division is working with departments to migrate sites off of Bengal and into the DWHS environment.

The DWHS Migration Project team is assisting departments with migration of their sites, while simultaneously cleaning up the Bengal Web server environment. Many sites have already migrated.

Benefits of the Departmental Web Hosting Service include minimal site downtime, system monitoring, virtual web hosting, access to technical training, data backup and restore, Web statistics, and more. Linux/Apache, Windows/IIS, and Cascade Content Management System (CMS) configurations are available.

Bengal will continue to host individual student, faculty, and staff data and Web sites.

For more information, visit the Division of IT's Departmental Web Hosting page. To request migration of a Bengal-hosted departmental Web site to the DWHS environment, please submit a Bengal migration request form.

News Bytes

The Division of Information Technology now offers online departmental ordering for a wide range of Adobe and Microsoft products. Product lists, prices and order forms are available at the Division of IT software sales pages.
Are you or someone you know using technology at MU to enhance the student learning environment or process? The annual Excellence in Teaching with Technology Awards recognize faculty, staff, graduate instructors, and teaching assistants who use technologies and demonstrate excellence in teaching. MU faculty, staff, and students are eligible to submit nominations prior to March 31, 2008. To find out more and submit nominations online, visit provost.missouri.edu/faculty/awards/technology.html.
Get ready for Office 2007 by attending one or all of IT Training's primer courses. The courses are shorter than our regular courses and focus on new features, like the ribbon. IT Training is in the process of converting from 2003 to 2007 for our more comprehensive courses as well. You should see them popping up on the schedule after spring break. To sign up for a primer, visit the IT Training page.

Cold-Weather Tips for Laptops

It's February in Missouri, and that means cold! It's important to protect not only yourself but also your laptop. Most laptops have a safe temperature range of 50 to 95 degrees, so protecting them from the cold is very important. Here are several tips to help you:

Store carefully. Never leave a laptop in the trunk of your car in cold weather, even if it's in an insulated case. If your laptop freezes, you could lose all your data.

Let your laptop warm up. After bringing a laptop in from the cold, let it warm up to room temperature before starting it. The display is especially vulnerable. Don't use a heating pad to "thaw" a frozen laptop display! Allow it to warm up on its own before you start up.

Use a laptop warmer.... These devices, designed specifically to keep a laptop warm, have been tested for safety and effectiveness and are a good investment.

...but avoid excessive heat buildup. Too much heat is as bad for your laptop as too little. Don't use mug warmers or pocket warmers to heat your laptop! These devices can cause problems if they heat the wrong parts of a laptop and can even melt internal components. Also, don't use your laptop while it's in its bag (or anywhere else that doesn't allow adequate air circulation) — inadequate ventilation can cause the processor to overheat.

Change your laptop's power settings. If your laptop uses the "power save" mode, turn it off. A running laptop will stay warmer than one that's asleep, as it generates its own heat.

(Source: adapted from Catherine Roseberry, "Top 10 Cold Weather Tips for Laptops", about.com Mobile Office Technology)

OneNote Helps You Collect, Organize, Share Notes

Need to take notes, minutes, gather information, put it in one place and find it later? Microsoft OneNote 2007 is your answer. Microsoft integrated this digital notebook software into the Office 2007 Suite. With its easy-to-use drawing tools, OneNote provides more flexibility when taking notes or minutes than MS Word. Plus, it helps you stay on top of information and tasks you need to get done. Each notebook has its own structure and is easy to search later.

Some of the things you can do with OneNote:

Share notes with other team members or students via email. In addition to your own notes, OneNote enables you to clip an image from your browser and even places the referenced URL in the notes.
Record a meeting or lecture for later reference. OneNote associates the audio to the notes you take. As you listen to the audio later, OneNote highlights your notes on your computer screen.
Tag important notes. With just a click, you can apply a star to an note item to help find it later. The star is just one of many tags you can apply.
Flag notes to show up in your Outlook Task Pad to remind you of an action item recorded during a meeting or lecture.
Ink notes with a tablet PC. Instead of typing, you can handwrite notes and later convert them into text. Obviously, your handwriting must be legible!

Don't take notes on paper and tediously type them into your laptop any longer. Do it once and save time. To learn how to use OneNote 2007, sign up for a free course with IT Training.

IT Rates to Change in FY09

In preparation for FY09 budgeting, the Division of Information Technology has extensively reviewed its recharge rates. (See table below.) Many rates have gone down. The table also shows rates for brand-new services, including Voice over IP, Unified Messaging, and Follow Me/Find Me services.

If you have questions please contact Nikki Witting at 882-2000 or WittingN@missouri.edu.

Product Service Category	Product Service	Unit	FY08 Rate	FY09 Rate	Change
Cable Television	Cable Television Port	Each	$9.00	$8.50	($0.50)
ID Service and Equipment	Activity Reader	Each	$37.00	$31.00	($6.00)
	Cash Drawer	Each	$10.50	$6.00	($4.50)
	Copy Reader	Each	$37.50	$30.00	($7.50)
	Dual Maxi Wedge	Each	$86.00	$95.00	$9.00
	ID Port	Each	$32.00	$50.00	$18.00
	IP Laundry Reader	Each	$36.00	$42.00	$6.00
	Laundry Reader	Each	$36.00	$43.00	$7.00
	Maxi Wedge	Each	$100.00	$99.00	($1.00)
	Patron Display	Each	$18.25	$15.00	($3.25)
Systems Administration	Server Administration	Each	$250.00	$225.00	($25.00)
Data Networking Equipment & Services	2-Wire Circuit	Each	$4.00	$6.00	$2.00
	4-Wire Circuit	Each	$8.00	$12.00	$4.00
	Data Port	Each	$12.00	$13.50	$1.50
	Fiber Leg	Each	$31.50	$50.00	$18.50
Telephone Equipment & Services	18-Button Add On Module	Each	$6.50	$5.00	($1.50)
	Call Trees	Each	$2.35	$3.00	$0.65
	Conference Phone	Each	$16.50	$10.00	($6.50)
	Emergency Phone	Each	$16.25	$44.50	$28.25
	Follow Me Find Me	Each	$0.00	$2.00	$2.00
	M5209 Business Set	Each	$6.00	$7.25	$1.25
	Norstar 7316 Phone	Each	$7.00	$9.00	$2.00
	Norstar 7324 Phone	Each	$13.00	$8.00	($5.00)
	Norstar Cabinent	Each	$10.00	$12.00	$2.00
	Norstar Caller ID	Each	$26.00	$20.00	($6.00)
	Norstar Module	Each	$14.00	$21.00	$7.00
	Norstar Port Expansion	Each	$18.00	$24.50	$6.50
	Norstar Software Cartridge	Each	$20.75	$26.50	$5.75
	Omega Console	Each	$17.25	$23.50	$6.25
	Unified Messaging	Each	$0.00	$4.00	$4.00
	Voice Mail	Each	$2.35	$2.50	$0.15
	Voice over IP Line (On Campus)	Each	$0.00	$10.00	$10.00
	Voice over IP Line (Off Campus)	Each	$0.00	$13.00	$13.00
	5.8 GHz Cordless Phone	Each	$12.50	$14.00	$1.50
	Norstar Software	Each	$7.00	$9.00	$2.00
Data Center Equipment Hosting	Data Center Floor Space	Cu Ft	$10.50	$16.50	$6.00
Data Center Equipment Hosting	Data Center Floor Space	Sq Ft	$62.50	$99.00	$36.50
Labor	Standard Labor	Hour	$50.00	$55.00	$5.00
Labor	Applications Development Labor	Hour	$75.00	$96.00	$21.00
Data Hosting	Bengal	500 MB	$2.00	$3.00	$1.00
	Departmental Web Services	GB	$4.00	$5.00	$1.00
	Sharepoint	50 MB	$0.85	$1.00	$0.15
Two-Way Radio Equipment & Services	Radio Port	Each	$10.00	$13.00	$3.00

Code Analyzer Software Supports Application Security

The Division of Information Technology has contracted with IBM to provide software to help campus departments comply with the Application Security Policy. This policy is designed to prevent inadvertent release of confidential or sensitive information, comply with regulatory mandates, minimize risks to users and the institution, and ensure the availability of critical applications.

The policy applies to custom applications developed by MU faculty/staff as well as to those acquired from vendors or other outside providers. All applications that use or store University data are subject to this policy, regardless of where the application is hosted.

The Division of IT now offers licenses for Fortify Source Code Analyzer. This software helps developers identify threats posed by security flaws in their software. Application developers can run Fortify against their programming code to identify and resolve common errors and security vulnerabilities. Also, developers who utilize Fortify to check their code may be able to reduce the amount of time it takes for the Information Security and Account Management team (ISAM) to perform a security audit on their application. Information about the licensing structure and yearly cost is available on the Division of IT's Fortify Source Code Analyzer page.

Direct your questions about the Application Security Policy, the auditing process, or Fortify licensing to isam@missouri.edu.

Sprint BCEE Service to End

Effective March 31, Sprint is ending its Business Connection Enterprise Edition (BCEE) service. Sprint BCEE is a wireless e-mail service that enables Sprint PCS mobile devices to work with Microsoft Exchange and other messaging servers.

This change will affect only Sprint customers who are BCEE subscribers. Beginning March 31, subscribers' phones will continue to work, but they will no longer get e-mail and calendar updates.

Windows Mobile will replace BCEE as the preferred solution for mobile access to e-mail, calendar, and contacts.

Please see the Division of IT's Sprint cellular page for departmental and individual customer service information.

Computer Purchase Contract Updates

The University has two approved vendors of desktop and notebook personal computers for departmental and individual purchase. The existing Dell contract has been extended through 2008, and the HP contract began in October 2007.

Departments and individuals may go through TigerTech, the Dell and HP web sites, or the new eProcurement system (Show-Me Shop) to configure and purchase computers using these contracts.

The University has also awarded a contract to CDW-G for purchasing computer peripherals (hardware and software). Departments may purchase using the CDW-G web site or the new eProcurement system (Show-Me Shop).

For more information about IT contracts available to the University of Missouri, please refer to the UM Procurement Services VPA site. For details about computer purchasing, please see the Division of IT's Campus Desktop Purchasing Program page.

February 2008 Oracle/PeopleSoft Update

Recent progress on Oracle/PeopleSoft implementation at UM:

Completed work for the W-2 and 1099 forms for UM employees.
Work is underway to load student photos for UMKC and MS&T into the PS Student System to assist Admissions in their work.
Supporting the rollout of ePro (the eProcurement PeopleSoft-based system) to all UM campuses.
Finalized plan for upgrade of PS Financial Management to v9.0. This upgrade will start in February with a completion date of November 2008.
Phase I of Connect EDU is in progress and has been implemented for all UM campuses. Phase II is in its planning stages.

Upcoming projects and goals include:

Time and Labor implementation (all campuses and UM System)
Social Security Number theft risk mitigation
Self-service HR funcitons including eProfile, ePay, and eBenefits
Student financial aid processing in PeopleSoft for MU
Pension administration for retirees

University of Missouri
Division of Information Technology
615 Locust Street, Columbia, MO 65211
(573)882-2000