Despite legitimate uses of anonymizing services, VPNs, and proxies, access to LETU systems may be denied if logins appear to present an elevated risk.
Public VPNs and other anonymizing services represent elevated risk login locations. While anonymizing services (including VPNs, proxies, etc) can be used for legitimate purposes, they are also used by those seeking account compromise to bypass geographic or reputation restrictions. Many VPN services, including many free VPN services, are associated with data mining and other malicious activities.
LETU’s Policy handbook provides the following guidance on anonymizing technology under section 6.1
“Due to abuse of anonymizing services by phishing and other malware agents, access to LETU resources should not be made from services that mask source IP addresses or otherwise provide anonymous access to internet resources (e.g. anonymizing VPN agents or similar). Such connection attempts may be restricted.”
What does LETU currently do with Anonymous Connections?
What services does this impact?
This affects most LETU Single Sign On (SSO) services including Canvas, O365, Email and other services which use the LETU SSO portal.