Multifactor authentication required for Metasys VPN Wednesday, May 27

Dear Metasys VPN users,

WHAT ARE WE DOING?
Computing will be making a change to the Metasys VPN system (metasysvpn.fnal.gov) to require multifactor authentication (MFA) through a YubiKey or RSA token.

WHEN WILL THIS OCCUR?
Wednesday, May 27; between 7 a.m. and 8 a.m.

WHAT IS THE IMPACT TO YOU?
Starting May 27, you will be required to use a Yubikey or RSA token to connect to the Metasys VPN.

WHAT DO YOU NEED TO DO?
If you currently do not have a YubiKey or RSA token, you will need to obtain one as soon as possible to avoid an interruption in connecting to the Metasys VPN. We recommend that you get a software token (“soft token”), which is an app that you install on your mobile device.

To obtain an RSA soft token:
1. Log in using your Services account username and password to the Service Desk website, https://servicedesk.fnal.gov.
2. In the search box, type “rsa.”
3. In the search results, click the link, “RSA Token Request.”
4. Select soft token. The soft token will be sent to you via email with instructions.

Between now and May 27, please test that you can access the new Metasys VPN system (metasysvpn2.fnal.gov) with your YubiKey or RSA token by following the instructions in this article: https://fermi.servicenowservices.com/kb_view.do?sysparm_article=KB0013296

If you encounter any issues, please report them to the Service Desk.