We have made further progress in identifying the cause of the authentication issue when connecting to eduroam. We now believe that this particular fault only affects iPhones and iPads (of all types) and is random in nature. In other words, sometimes the device will work and sometimes it will not. Because the issue lies with the authentication process, it does not relate to client location or the access point the client is trying to connect to. We are waiting for our equipment vendor to provide a fix for this fault and in the meantime, we apologise for the inconvenience caused. If you are having issues with other device types we do not think this is connected to the current authentication issue. As such, please contact your local IT section in the first instance or the UIS Service Desk to look into this matter further.

UIS recently introduced a Service Status system, which allows users to check the current status of our key IT services by calling 01223 463085 and listening to an automated recording. We have now enhanced this service to allow users to subscribe to automatic alerts whenever the status of a service changes. If a service is undergoing planned maintenance or is affected by an unplanned outage, you can be alerted by SMS, email and/or pager that a service has become either unavailable or downgraded. If you would like to subscribe to service updates, login to our self-service web page and select which services you’d like to be notified about: [https://status.uis.cam.ac.uk](https://status.uis.cam.ac.uk). If you have any queries, please contact [comms@uis.cam.ac.uk](mailto:comms@uis.cam.ac.uk).

We have had reported a number of issues with the recently released Fall creators update (1709) for Windows 10 which includes a number of anti-malware products having issues. Microsoft and vendors are saying that these products may need to be completely uninstalled (rather than just disabled) before upgrading and that they may not work without an updated version. As ever with new releases, we suggest people hold off on upgrading while bugs are ironed out.

Earlier today we escalated the issue causing some devices to fail eduroam authentication to our network equipment vendor. They have believe they have identified the area at fault and we are working towards a resolution. Unfortunately, we do not have a timescale for the fix. The UniOfCam guest SSID is unaffected by this problem. We apologise for the inconvenience caused.

Wireless authentication issues for some devices is currently under investigation We apologise for any inconvenience.

Don't be surprised to find your Google Calendars looking different. Google have done some work to improve the user experience, particularly on mobile devices. See: [https://www.blog.google/products/g-suite/time-refresh-introducing-new-look-and-features-google-calendar-web/](https://www.blog.google/products/g-suite/time-refresh-introducing-new-look-and-features-google-calendar-web/)

After a short pause to fix a technical obstacle we are happy to announce that we are able to restart the 2N controller resiliency project to the University Wireless Service. As a reminder, the wireless controllers coordinate the activity of all 5000 University wireless access points spread throughout the City. Presently we have an N+1 resiliency configuration (this is a master controller, a standby master controller and a single back up controller for the six local controllers). We are going to migrate this to a full 2N configuration over the coming weeks which means all seven central controllers will be fully replicated with another seven controllers in a separate resilient site. We plan to do this work in several phases, and whilst the first phase will achieve 2N resiliency, we also plan to add to the level of resiliency in subsequent phases. Unfortunately, this entails several outages, some of which are more disruptive to service than others. Lastly, as part of this reconfiguration work we are introducing changes to the way the underlying network arrangements for the Wireless system function in anticipation of adopting the next release of the Aruba Operating System (AOS 8). Adopting this OS will require a software rebuild of the wireless system. As such this will be a separate major project which will be announced nearer the time. Phase One The first of the 2N migration will be the setup of full replication in two disparate sites on the West Cambridge Site. The primary site will initially be in the Roger Needham Building Data Centre and the secondary site will be in the West Cambridge Data Centre (WCDC). Both these sites have backup networking and power resilience. To migrate to this configuration will require five out of hours outages, which are detailed below. An additional outage will also be announced at a later date. Phase Two In phase two of the reconfiguration we plan to move the wireless controller infrastructure to the distribution layer of the Cambridge University Data Network (CUDN). This will achieve geographic diversity but will also gain a big increase in network efficiency. Proximity to the centre of the CUDN will mean that Wi-Fi traffic can enter and exit the CUDN more efficiently. This phase will also enable us to explore load balancing arrangements for the controllers and due to the growing scale of the Service we also plan to place the controllers on their own router infrastructure. The timescale for this stage has yet to be determined. Phase Three In the last phase of this reconfiguration work, we plan to introduce resiliency for the supporting infrastructure that the Wireless Service relies upon. A timescale for this stage is yet to be determined. Phase One Outages Tuesday 24th October 08.00 – 09.00 (Service liable to short interruptions during this period). Tuesday 31st October 08.00 – 09.00 (Service liable to short interruptions during this period). Thursday 2nd November 07.00 – 09.00 (Service liable to longer periods of disruption during this period). Tuesday 7th November 08.00 – 09.00 (Service liable to short interruptions during this period). Tuesday 14th November 08.00 – 09.00 (Service liable to short interruptions during this period). During these outages we are conducting significant system changes, as such please expect some periods of no service during this time and the possibility of more than one outage. To clarify, this means that devices may be unable to connect to, or pass traffic via, the University Wireless Service. This will affect connectivity to the UniOfCam guest SSID, eduroam and all locally bridged SSIDs.

Following a successful tender bid from Sharp UK, a range of multi-function devices (MFDs) are available for purchase to the collegiate University. This contract will benefit institutions by offering competitive pricing without the requirement for further evaluation or competition. To mark this development there will be a launch event at UIS, Roger Needham Building, on 31 October 2017, 10:00–15:00. Refreshments provided.

Extent: Power management for hosted servers at sby.colo.csx.cam.ac.uk Impact: Service unavailable for some or all of the period We will apply operating system patches to the server that provides the user interface to the power distribution system for the hosted server service in the Soulsby Building. This means that managers of hosted servers in the Soulsby Building may not be able to turn their power outlets on or off during this time. Hosted systems themselves will be unaffected, as will power control for servers in the Roger Needham Building.

Extent: The Unix Support mirror server, nfs-, www-, ftp-, and rsync-uxsup.csx Impact: Service unavailable The service will be unavailable for some or all of this period while the underlying operating system is patched.

As per recent news articles we would like to bring to your attention the announced security vulnerability in Wireless Protected Access II protocol (WPA2), which is commonly used in securing the connection to wireless (Wi-Fi) networks both in the office and home environment. This is an important announcement because all Wi-Fi network and client devices are potentially vulnerable to this security flaw. The University Wireless Service runs a central controlled deployment of Aruba access points. Aruba Networks have already released a patch for this vulnerability and the University Wireless Team will be installing this between 08.00 and 09.00 on 17 October 2017, as previously announced. Those institutions who run their own infrastructure are advised to take steps to update their own devices as soon as possible. It is important to be aware that this vulnerability also needs to be patched on client devices (e.g. PCs, laptops, smartphones, iPads etc) and most major vendors should be releasing updates for these. We strongly advise that users update their software as soon as possible. We also recommend that devices that no longer receive security updates should not be attached to Wi-Fi networks, including the University Wireless Service (via eduroam or UniOfCam).

The rules for external references from the cam.ac.uk domain have been relaxed to allow references to IP addresses when a CNAME target hostname is not available. There is some more information on this change on the IP Register news page

Two of our software licensing servers failed overnight following an issue with Microsoft patching. As a result, Managed Cluster Service (MCS) users may have been unable to launch a small number of applications. The servers have now been restored and we believe that the MCS is now running normally. If you are experiencing problems, please contact the UIS Service Desk: [service-desk@uis.cam.ac.uk](mailto:service-desk@uis.cam.ac.uk).

On Tuesday the 17th of October between 08.00 and 09.00 a software upgrade will be applied to the University Wireless system. This will include interruptions to connectivity to the UniOfCam guest SSID, eduroam and locally bridged SSIDs. As such, at brief intervals during this period, devices will be unable to connect to the University Wireless Service. This is a security and bug fixing update only and no new features are being introduced.

Microsoft has announced that as of October 31 2017, it will no longer be supporting RPC over HTTP as a protocol for accessing mail data from Exchange Online. It will no longer provide support or updates for Outlook clients that connect through RPC over HTTP, and the quality of the mail experience will decrease over time. Note that RPC over HTTP will continue to work after October 31st, even though it will not be supported. Users who have followed UIS' instructions for configuring their email clients to access Exchange Online will not be affected and no action is necessary. The small number of users who have been detected using RPC over HTTP have been contacted individually. If you have not been contacted then you do not need to worry about this. Further details: [https://support.microsoft.com/en-us/help/3201590/rpc-over-http-reaches-end-of-support-in-office-365-on-october-31-2017](https://support.microsoft.com/en-us/help/3201590/rpc-over-http-reaches-end-of-support-in-office-365-on-october-31-2017)

The git repository hosting service, git.csx.cam.ac.uk, will be interrupted between 08:00 and 09:00 on Thursday 12th October for a service upgrade.

Desktop Services will be unavailable from 07:30 - 08:30 on Thursday 12th October due to routine maintenance - application of patches. Services affected - - All MCS machines - MCS/DS users' home directories - Personal, group and society webpages - Group file space (UX) - Dsfiles.ds.cam.ac.uk

Last week we rolled out staff members’ proper names into the Blue Active Directory (AD) and, hence, the Exchange Online Global Address List (GAL). Following this, at 12:00PM on 11 October we will be extending the change to include students’ proper names. This change will visibly take effect after the next sync to the Blue AD.

Tomorrow at 12:00PM we will be changing the source of the data feed that provides the directory entries for students in Exchange Online's address book. This change will make it easier to find people using the auto complete address feature in Exchange Online by including their preferred first name. As a result, some students' names may be displayed differently in Exchange Online's address book.

We believe the problems experienced this morning with the online Timetable have now been resolved. If you are still encountering any problems, please contact our Service Desk: [service-desk@uis.cam.ac.uk](mailto:service-desk@uis.cam.ac.uk).