A security upgrade conducted on January 28th requires users to enable multi-factor authentication (MFA) to use VPN services. As part of this, signing into VPN now uses email credentials, rather than a special VPN password. If you are already enrolled in MFA, you do not need to do anything in response to this change. If do not use MFA, you will need to enroll. You MUST enroll in MFA to use VPN; you will not be able to connect otherwise. To enroll in MFA, follow the instructions in our knowledgebase.
Once enrolled in MFA, when a user attempts to connect to VPN, you will be prompted to enter a code sent via your chosen authentication method. You will also see these prompts when accessing your email (or other Office 365 apps) when first connecting from a new device and after 30 days since the code was entered. Note that the 30-day exemption does not apply for VPN, so you will need to enter a code each time.
For more information on why ITS has chosen to utilize MFA, see this knowledgebase article.
If you have any questions or concerns about this process, you can contact the Help Desk at firstname.lastname@example.org or ex.3333.