eShop users are experiencing intermittent login issues with no reliable work around. This will revert a recent change to authorization from Shibboleth back to CUWebAuth for a stable experience as we continue to work on this issue.
On September 14th, 2021 Microsoft released patches to mitigate the effects of four new vulnerabilities for Linux servers hosted in Azure. The root cause of these vulnerabilities is found in the Open Management Infrastructure (OMI) agent that’s embedded in many popular Azure services. The Cornell IT Security office recommends immediate patching of any vulnerable assets.
For customers of CIT's Managed Server Service - mitigations are already in place for Linux servers at Azure.
On Sunday, September 19, 2021, between 12:01am and 3:00pm, Cornell's Zoom contract will be renewed. Due to an unforeseen interaction between the contract renewal and the recent increase in webinar capacities, this change will result in a brief period of time where Cornell Zoom webinar licenses will be unavailable to users. This change may not require the full scheduled time. During this time, Cornell users will not have access to their webinar licenses and will be unable to schedule or host Zoom webinars.
On Thursday, September 23, 2021, from approximately 5:00am to 7:00am, PeopleSoft Student Center, Faculty Center, Student Essentials, ePay, Student Admissions, Contributor Relations, Financial Aid, Student Financials, Student Records, and Student Employment (PSES) will be unavailable due to the migration of online and batch objects to PeopleSoft Production (PSPROD).
On Friday, October 1, 2021, CUWebAuth will be decommissioned and turned off. To ensure the best customer experience, Shibboleth has been adopted as the identity provider of choice for web application integrations. In preparation for the service retirement deadline, CUWebAuth website administrators are migrating all CUWebAuth applications to Shibboleth.
Some users have reported issues with Zoom meetings returning invalid meeting IDs. These invalid ID errors appear to result from recurring meetings created through the Zoom website whose invite text or details have been pasted into an Outlook calendar entry that is not a recurring calendar event. It may also result from the pasted event using a different title than the original Zoom meeting.
Apple has released an urgent security update for Mac, iPhone, iPad and Watch users related to CVE-2021-30860 The Citizen Lab. The Cornell IT Security Office recommends immediately applying this update to any affected devices.
CVE-2021-30860 "The Citizen Lab" allows attackers to run commands on vulnerable systems without any user interaction. Successful exploitation of this vulnerability gives access to a device's camera, microphone, messages, texts, emails, calls and more.
On Sunday, September 12, 2021, starting at 5:00am until approximately 5:30pm, IBM will apply updates to the PeopleSoft Campus Solutions system. These updates are necessary to meet federal and university compliance requirements.
PeopleSoft Production will be unavailable to users while updates are applied. This maintenance includes PeopleSoft Student Center, Faculty Center, Student Essentials, Employee Essentials, ePay, Contributor Relations, Student Admissions, Financial Aid, Student Records, Student Financials, and Student Employment (PSES).