While UX is great with QR codes, security and trust is challenging. You'll start to see more QR-based provisioning with IoT as part of Wi-Fi Easy Connect but those have other security layers baked on top.
________________________________ From: The EDUCAUSE Wireless Issues Community Group Listserv <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> on behalf of Hunter Fuller <00000211f6bc0913-dmarc-requ...@listserv.educause.edu> Sent: Tuesday, February 2, 2021 13:41 To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> Subject: Re: [WIRELESS-LAN] [External] Re: [WIRELESS-LAN] android 11 upcoming changes Feb 15th 2021 I wish there was a QR schema. Even if it only worked on devices with another connection available (LTE, etc.) to download the config. Sigh. The closest we have right now is scanning a QR code leading to a .mobileconfig file on iOS. -- Hunter Fuller (they) Router Jockey VBH Annex B-5 +1 256 824 5331 Office of Information Technology The University of Alabama in Huntsville Network Engineering On Tue, Feb 2, 2021 at 12:29 PM Tim Cappalli <00000194c9ecac40-dmarc-requ...@listserv.educause.edu<mailto:00000194c9ecac40-dmarc-requ...@listserv.educause.edu>> wrote: Well, again, you should be properly configuring the supplicant regardless, so the instructions would apply to any version of Android.... RE: QR, no, enterprise authentication is not supported. A supplicant configuration tool should always be used. The supplicant was not designed to be manually configured by end users (on any OS). ________________________________ From: The EDUCAUSE Wireless Issues Community Group Listserv <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>> on behalf of Michael Holden <mhol...@datanetworksolutions.com<mailto:mhol...@datanetworksolutions.com>> Sent: Tuesday, February 2, 2021 13:16 To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>> Subject: Re: [WIRELESS-LAN] android 11 upcoming changes Feb 15th 2021 We've seen much the same. A Pixel 2XL and a Pixel3XL fully updated, the 2XL had the Don't Validate option, but the Pixel3XL did not. We added the CA cert to a subpage on the guest captive portal for ease of access to the Wireless device, and provided some instructions for the devices. The workflow to manually add the Wireless Trust was a bit flaky too with Modify Settings not really working. The instruction set that appeared to work as of the current (January 2021) Android software release on the Pixel 3XL not tested on Pixel 4/4a/5: 1. Download the CA cert from the ClearPass Guest Captive Portal Page 2. Go to Settings 3. Network & Internet 4. Wi-Fi 5. Wi-Fi preferences 6. Advanced 7. Install Certificate 8. Choose the Certificate downloaded in the first step 9. Name the Certificate 10. Connect to the Secure SSID * Change the Certificate from System Certs to the Certificate name entered in the previous step * Domain to <your domain> * Identity as the username * Password as the user’s password * Connect 11. Confirm Wireless is connected to the WPA2-Enterprise SSID * You may have to forget and add network as the Modify Setting on the SSID does not appear to work properly as of January, 2021 Android Software release There is a QR code that can be created for PSK networks, has anyone seen if this is possible for WPA2/3-Enterprise? ________________________________ From: The EDUCAUSE Wireless Issues Community Group Listserv <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>> on behalf of Tim Cappalli <00000194c9ecac40-dmarc-requ...@listserv.educause.edu<mailto:00000194c9ecac40-dmarc-requ...@listserv.educause.edu>> Sent: Tuesday, February 2, 2021 12:54 To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>> Subject: Re: [WIRELESS-LAN] android 11 upcoming changes Feb 15th 2021 Screenshot please. ________________________________ From: The EDUCAUSE Wireless Issues Community Group Listserv <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>> on behalf of Walter Reynolds <wa...@umich.edu<mailto:wa...@umich.edu>> Sent: Tuesday, February 2, 2021 12:46 To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>> Subject: Re: [WIRELESS-LAN] android 11 upcoming changes Feb 15th 2021 Can someone explain something to me? I have a Pixel 3 that I did a factory rest on. Next I did all the updates needed and it is running Android 11. The build number is RQ1A.210205.004 which includes the latest security patch for the phone. When I go to configure a WPA2 Enterprise network I still have the "Don't validate" option. What am I missing here? ------------------------ Walter Reynolds Network Architect Information and Technology Services University of Michigan (734) 615-9438 On Tue, Feb 2, 2021 at 8:51 AM Hurt,Trenton W. <trent.h...@louisville.edu<mailto:trent.h...@louisville.edu>> wrote: LOL if it’s working now on those android 11 devices as is then I guess it is. And if it’s not well then Feb 15th I guess will be fun Trent Hurt University of Louisville ________________________________ From: The EDUCAUSE Wireless Issues Community Group Listserv <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>> on behalf of Tim Cappalli <00000194c9ecac40-dmarc-requ...@listserv.educause.edu<mailto:00000194c9ecac40-dmarc-requ...@listserv.educause.edu>> Sent: Monday, February 1, 2021 6:06:41 PM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>> Subject: Re: [WIRELESS-LAN] android 11 upcoming changes Feb 15th 2021 CAUTION: This email originated from outside of our organization. Do not click links, open attachments, or respond unless you recognize the sender's email address and know the contents are safe. If the supplicant is properly configured, then yes. ________________________________ From: The EDUCAUSE Wireless Issues Community Group Listserv <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>> on behalf of Hurt,Trenton W. <trent.h...@louisville.edu<mailto:trent.h...@louisville.edu>> Sent: Monday, February 1, 2021 18:03 To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>> Subject: Re: [WIRELESS-LAN] android 11 upcoming changes Feb 15th 2021 Tim I know you can’t comment specifically on my setup or environment but if I have android 11 pixel 4 and others that have the December update already and the do not validate is not an option for those devices but they can use our onboard eap tls workflow and the devices auth via that method. Do you think that my setup (regardless if it’s not the most secure way or whatever) will still work after this feb 15 date? Trent Hurt University of Louisville ________________________________ From: The EDUCAUSE Wireless Issues Community Group Listserv <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>> on behalf of Trenton Hurt <trenth...@gmail.com<mailto:trenth...@gmail.com>> Sent: Monday, February 1, 2021 5:55:20 PM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>> Subject: Re: [WIRELESS-LAN] android 11 upcoming changes Feb 15th 2021 CAUTION: This email originated from outside of our organization. Do not click links, open attachments, or respond unless you recognize the sender's email address and know the contents are safe. Android 11 (pixels 4 and other google handsets) have been doing the do not validate since early dec and for us it meant eap peap unmanaged over the air ( yes I know Tim this is not secure method but just how it is or was anyway). Now those users don’t have eap peap option and we have been moving them to our eap tls onboarding and this has been working for those android 11 users. I just wasn’t sure if these were additional security measures that I needed to look out for or make some changes to my onboard profile stuff to make sure these android 11 still work after February 15 On Mon, Feb 1, 2021 at 5:28 PM Jennifer Minella <j...@cadinc.com<mailto:j...@cadinc.com>> wrote: I may disagree with some of the other feedback here… I think this is a big deal. It sounds like Google will be enforcing proper server validation for 802.1X-secured networks, based on what Trent sent originally. I believe Apple already has been enforcing this for a bit. If my guess is correct (I’ll try to find a link) then what it means is – after this update, you can’t tell the endpoint to ignore or bypass the server certificate for 802.1X (any EAP method). The impact of this is… * If you’re organization has any endpoints that have been configured to use a secured network but are ignoring the server’s certificate – then that will STOP working suddenly at the update. * This setting (ignore/don’t validate server cert) is not ideal but it’s prevalent especially for things like BYOD or HED device onboarding, testing, etc. It should be fixed but this is one of those things that could have a huge widespread impact if the endpoints/networks aren’t configured properly now. * Typically proper settings for secured 1X networks are pushed through GPO, MDM, or an onboarding process through vendor tools (can be a server-based tool or a client-based config assist tool). If that wasn’t done then the endpoints may not have the server certificate installed and trusted, and if that’s the case they will just cease to work after the device upgrade. Tim it’s not referencing a wildcard cert; they’re still using the specific FQDN for the COMMON NAME. The article references the connect to domains as a different field which is not the certificate CN.. ? Yeah, here are some links… * A reddit article I hope is accurate b/c I only skimmed it https://www.reddit.com/r/networking/comments/j7ero1/psa_android_11s_december_security_update_will/<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.reddit.com%2Fr%2Fnetworking%2Fcomments%2Fj7ero1%2Fpsa_android_11s_december_security_update_will%2F&data=04%7C01%7Ctim.cappalli%40MICROSOFT.COM%7Cfa18f3aace454b6272bf08d8c7aa2e00%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637478881063226031%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=l0KySU2ncNImAn6PV3SX88Dzdt9mjAjoVx5esBqt4mQ%3D&reserved=0> The security patch for Android 11 (QPR1) will remove the "Do not validate" option under "CA certificate" for EAP server certificate validation to prevent misconfiguration resulting in credential leaks. This is very good news from a security standpoint! * Secure W2 article with the setting in reference to WPA3 (which removes several less-secure options for confgs) https://www.securew2.com/blog/android-11-server-certificate-validation-error-solution/<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.securew2.com%2Fblog%2Fandroid-11-server-certificate-validation-error-solution%2F&data=04%7C01%7Ctim.cappalli%40MICROSOFT.COM%7Cfa18f3aace454b6272bf08d8c7aa2e00%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637478881063236027%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=RrZHIA%2BRQ5nPP8begN0kgfwvq7Qxjejc%2B7mi3qaSj6o%3D&reserved=0> * ___________ Jennifer Minella, CISSP, HP MASE VP of Engineering & Security Carolina Advanced Digital, Inc. www.cadinc.com<https://nam06.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.cadinc.com%2F&data=04%7C01%7Ctim.cappalli%40MICROSOFT.COM%7Cfa18f3aace454b6272bf08d8c7aa2e00%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637478881063246022%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=Y6OscOcMq1RL%2B5DGq8TqURg3hUABqQPI16%2B5TDlVnX0%3D&reserved=0> j...@cadinc.com<mailto:j...@cadinc.com> 919.460.1313 Main Office 919.539.2726 Mobile/text [CAD LOGO EMAIL SIG] From: Hurt,Trenton W. <trent.h...@louisville.edu<mailto:trent.h...@louisville.edu>> Sent: Monday, February 1, 2021 4:54 PM Subject: Re: android 11 upcoming changes Feb 15th 2021 Ok thanks as always for clarification as ive been seeing android 11 on campus and they work with our current eap tls onboard workflow. I wasn’t sure if something else was coming on feb 15th that would cause some issue with this setup From: The EDUCAUSE Wireless Issues Community Group Listserv <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>> On Behalf Of Tim Cappalli Sent: Monday, February 1, 2021 4:51 PM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> Subject: Re: [WIRELESS-LAN] android 11 upcoming changes Feb 15th 2021 CAUTION: This email originated from outside of our organization. Do not click links, open attachments, or respond unless you recognize the sender's email address and know the contents are safe. This is a bit misleading IMO. There are no further changes in Android 11 after the December update. Seems like this is specific to Secure W2's product. As a general best practice, you should be using a single EAP server certificate, signed using a PKI in your control, across your all your RADIUS servers. It is very poor practice to use a wildcard for EAP subject name matching. I'm very disappointed to see vendors making that recommendation. tim ________________________________ From: The EDUCAUSE Wireless Issues Community Group Listserv <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>> on behalf of Hurt,Trenton W. <trent.h...@louisville.edu<mailto:trent.h...@louisville.edu>> Sent: Monday, February 1, 2021 16:46 To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>> Subject: [WIRELESS-LAN] android 11 upcoming changes Feb 15th 2021 FYI I just received the following from securew2 about some additional security changes coming to android 11. This action will need to take place before the upcoming Android application update that is planned for February 15th, 2021. As you may already be aware, Google mandates server validation to be properly configured for WiFi from Android version 11. This means that any 802.1X WiFi configuration without the following two settings will fail to connect. 1. Server Validation 2. Connect to these server names For more information about these configurations, please read below. What is Server Validation in a Network Profile? This configuration item is for clients to validate a RADIUS server certificate chain during an EAP authentication. Clients would forward its requests only when the received server certificate is signed by the CA that is configured on the SecureW2 Network Profile. It may be required to upload only the Root CA of the RADIUS server certificate, however, in some cases, the full chain may need to be provided. What is the Connect to these server names field? This field is used to specify the name of your RADIUS server certificate using its Common Name. If there is only one RADIUS server in your setup, you can quickly find this name from the certificate. If there are more than one RADIUS servers, or if the RADIUS server Common Name has more than two subdomains, we advise to use a wildcard name. For example: If the RADIUS server certificate’s Common Name = radius.domain.com<https://nam06.safelinks.protection.outlook.com/?url=http%3A%2F%2Fradius.domain.com%2F&data=04%7C01%7Ctim.cappalli%40MICROSOFT.COM%7Cfa18f3aace454b6272bf08d8c7aa2e00%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637478881063246022%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=vz%2BquTp0s6g66LOo9Yq01kbN39sdTackcHIVofvVTho%3D&reserved=0> Connect to these server names should be radius.domain.com<https://nam06.safelinks.protection.outlook.com/?url=http%3A%2F%2Fradius.domain.com%2F&data=04%7C01%7Ctim.cappalli%40MICROSOFT.COM%7Cfa18f3aace454b6272bf08d8c7aa2e00%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637478881063256014%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=Cr5NLBLR3dMesyswMgXpGMKDsRR%2FpsUvpXrQJhRETqU%3D&reserved=0> If the RADIUS server certificate’s Common Name = radius.lab.department.domain.com<https://nam06.safelinks.protection.outlook.com/?url=http%3A%2F%2Fradius.lab.department.domain.com%2F&data=04%7C01%7Ctim.cappalli%40MICROSOFT.COM%7Cfa18f3aace454b6272bf08d8c7aa2e00%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637478881063266005%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=LWOJtFHElbqoQzrDEjEJk%2FpIuGuDAZeO6u%2FVfm9HGRE%3D&reserved=0> Connect to these server names should be *.department.domain.com<https://nam06.safelinks.protection.outlook.com/?url=http%3A%2F%2Fdepartment.domain.com%2F&data=04%7C01%7Ctim.cappalli%40MICROSOFT.COM%7Cfa18f3aace454b6272bf08d8c7aa2e00%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637478881063266005%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=uBMVaGFi7Yr31WniiyBN8Zh4OAM2clSp8w679ClclYk%3D&reserved=0> or *.domain.com<https://nam06.safelinks.protection.outlook.com/?url=http%3A%2F%2Fdomain.com%2F&data=04%7C01%7Ctim.cappalli%40MICROSOFT.COM%7Cfa18f3aace454b6272bf08d8c7aa2e00%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637478881063275999%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=HbMIotIszUMA9%2Bc7ahqXjxXvujV46CLZIz3yBqQq7Zk%3D&reserved=0> Thanks Trent Trenton Hurt, CWNE #172,ACMP,ACCP,CCNP(W),CCNA(W),CCNA(V),CCNA(R/S) Network Analyst University of Louisville Phone (502) 852-1513 ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.educause.edu%2Fcommunity&data=04%7C01%7Ctim.cappalli%40MICROSOFT.COM%7Cfa18f3aace454b6272bf08d8c7aa2e00%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637478881063286000%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=OpBRLAEioAOwdtmim0V4Ro1vDlLPryVMRswunz3bzG4%3D&reserved=0> ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.educause.edu%2Fcommunity&data=04%7C01%7Ctim.cappalli%40MICROSOFT.COM%7Cfa18f3aace454b6272bf08d8c7aa2e00%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637478881063286000%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=OpBRLAEioAOwdtmim0V4Ro1vDlLPryVMRswunz3bzG4%3D&reserved=0> ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.educause.edu%2Fcommunity&data=04%7C01%7Ctim.cappalli%40MICROSOFT.COM%7Cfa18f3aace454b6272bf08d8c7aa2e00%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637478881063295994%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=PyB41BwSqC8T9ruikfKxRDzgCwRGE0LdXB%2B%2BQiFeq%2Bs%3D&reserved=0> Visit https://cadinc.com/blog<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcadinc.com%2Fblog&data=04%7C01%7Ctim.cappalli%40MICROSOFT.COM%7Cfa18f3aace454b6272bf08d8c7aa2e00%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637478881063305983%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=g4dpMH7wlynLjFZCGgcrIExGi%2BJNZF5jC7RZE3O25K4%3D&reserved=0> for tech articles and news. ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.educause.edu%2Fcommunity&data=04%7C01%7Ctim.cappalli%40MICROSOFT.COM%7Cfa18f3aace454b6272bf08d8c7aa2e00%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637478881063305983%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=Eo4AIy37Ld%2Fq4bJX6ZSmxphnS7prP%2FybpVTVuw3WMmc%3D&reserved=0> ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.educause.edu%2Fcommunity&data=04%7C01%7Ctim.cappalli%40MICROSOFT.COM%7Cfa18f3aace454b6272bf08d8c7aa2e00%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637478881063315978%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=iiexHJZcfvity53VijykdeFNvcV31pJV9%2F0Z2BgRKHQ%3D&reserved=0> ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.educause.edu%2Fcommunity&data=04%7C01%7Ctim.cappalli%40MICROSOFT.COM%7Cfa18f3aace454b6272bf08d8c7aa2e00%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637478881063325974%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=NUPUKpQ%2FGfuliP8heMWH6LQxzobONbWyiznC8KH%2FDaE%3D&reserved=0> ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.educause.edu%2Fcommunity&data=04%7C01%7Ctim.cappalli%40MICROSOFT.COM%7Cfa18f3aace454b6272bf08d8c7aa2e00%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637478881063325974%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=NUPUKpQ%2FGfuliP8heMWH6LQxzobONbWyiznC8KH%2FDaE%3D&reserved=0> ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.educause.edu%2Fcommunity&data=04%7C01%7Ctim.cappalli%40MICROSOFT.COM%7Cfa18f3aace454b6272bf08d8c7aa2e00%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637478881063335973%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=mYG%2FWaBUHqYKBXl0LycH20ub7LMprcgWzG%2BzXl%2BDO9k%3D&reserved=0> ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.educause.edu%2Fcommunity&data=04%7C01%7Ctim.cappalli%40MICROSOFT.COM%7Cfa18f3aace454b6272bf08d8c7aa2e00%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637478881063335973%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=mYG%2FWaBUHqYKBXl0LycH20ub7LMprcgWzG%2BzXl%2BDO9k%3D&reserved=0> ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Flinkprotect.cudasvc.com%2Furl%3Fa%3Dhttps%253a%252f%252fwww.educause.edu%252fcommunity%26c%3DE%2C1%2CstTBripMujhthMmBNS_2jPRy2noScpTF_Eo9u8dO3qmmFRkF4jkBKohaBExGWeQrwhizVAOzx6QlitXijm5pwD-8BFfKN3982GyLN8BXXadNrLHM9kFiLA%2C%2C%26typo%3D1&data=04%7C01%7Ctim.cappalli%40MICROSOFT.COM%7Cfa18f3aace454b6272bf08d8c7aa2e00%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637478881063345960%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=JmIzIF%2FUaxUCTmrr4yDFTGXFbn5e5xNh1UkwMiMQAok%3D&reserved=0> ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.educause.edu%2Fcommunity&data=04%7C01%7Ctim.cappalli%40MICROSOFT.COM%7Cfa18f3aace454b6272bf08d8c7aa2e00%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637478881063355956%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=kHdSpP%2BpkmvfTG5pB2CVacLKmIKy2gvWCAjsxc4WVhM%3D&reserved=0> ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.educause.edu%2Fcommunity&data=04%7C01%7Ctim.cappalli%40MICROSOFT.COM%7Cfa18f3aace454b6272bf08d8c7aa2e00%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637478881063355956%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=kHdSpP%2BpkmvfTG5pB2CVacLKmIKy2gvWCAjsxc4WVhM%3D&reserved=0> ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.educause.edu%2Fcommunity&data=04%7C01%7Ctim.cappalli%40MICROSOFT.COM%7Cfa18f3aace454b6272bf08d8c7aa2e00%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637478881063365951%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=22HQnDYMkiH%2BMQH5dMtE0h7PQiIbtqr6Bm2xjalRzjw%3D&reserved=0> ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community
