UAB WiFi is available to all students, faculty and staff free of charge, and to guests who sign up for a one-day guest account. Click here to learn more about how to connect your devices.
UAB IT provides antivirus software for use by everyone at UAB, including your personal home systems.
Please note: Microsoft Forefront went end-of-life in July 2015.
- For home use on Windows 7 and Vista, UAB IT recommends Microsoft Security Essentials be installed on your Windows system. If your computer is running Windows 7, Windows Defender only removes Spyware. To get rid of viruses and other malware, including spyware, on Windows 7, Windows and Vista, you should download Microsoft Security Essentials for free.
- For home use on Windows 8, Windows Defender replaces Microsoft Security Essentials. You cannot use Microsft Security Essentials with Windows 8 or Windows RT, but you don't need to because Windows Defender already provides built-in protection. Learn more about using Windows Defender on Windows 8.
UAB IT recommends that system administrators on campus use System Center Endpoint Protection (SCEP) for antivirus and malware protection for campus computers.
System Center Endpoint Protection 2012 has several advantages over the scope of Microsoft Security Essentials:
- Centralized reporting
- Centralized monitoring
- Centralized management
- Automated network client deployment
- Advanced Microsoft support is available through professional, premier and/or software assurance programs
- Management of the host-based Windows Firewall policy via the SCCM policy configuration interface, allowing for configuration of endpoint security as well as allowing or denying connections.
System Center Endpoint Protection 2012 provides a single, integrated platform that reduces overall IT management and operating costs.
UAB IT's recommendation is to deploy the SCEP agent within System Center, along with the inventory agent. There are many other features you may turn on or block from use within SCCM.
- For Mac/(OS x) use Sophos Anti-virus. Please click here and login to select Sophos from the available titles.
UAB IT is currently blocking certain peer-to-peer (P2P) file sharing protocols. P2P protocols are cited in copyright infringement cases brought against students and employees at a number of educational institutions by the Recording Industry Association of America (RIAA) and other media companies.
Recent trends across the country also show an increasing number of Digital Millennium Copyright Act (DMCA) complaints for distributing copyrighted works over peer-to-peer protocols. Students and Employees should be aware that copyright infringement is not only against UAB policy, but also federal law.
UAB IT uses an Intrusion Prevention System (IPS) device to monitor network activity for malicious or unwanted behavior. The IPS also allows for real time blocking of selective P2P protocols which will reduce our risk of receiving DMCA complaints and promote compliance with the UAB Acceptable Use Policy regarding copyright violations.
UAB IT does not block protocols currently being used for legitimate purposes. Streaming content such as YouTube should not be affected by the change. There are several options available to users who wish to participate in legal downloading of media, such as Rhapsody, Spotify, ITunes music store and Amazon mp3.
Users encountering connectivity issues as a result of these changes may contact AskIT for assistance at 205-996-5555.
Please Note: There is a known incompatibility with Sophos and FileVault on Mac OS X 10.5.x. If you are using FileVault please do not install Sophos Antivirus at this time.
Prior to enabling FileVault the following considerations should be observed:
Although FileVault has a very low failure rate; it is recommended that users create a backup of documents and files prior to enabling FileVault. This backup will provide a means of recovery in the event that anything should happen.
- Time Machine:
Under normal operation Time Machine will backup information in the user's Home folder while the user is logged in. Once FileVault is enabled however, Time Machine will back up a user's Home folder only after the user logs out and recovery of individual files becomes difficult. It is for this reason that Time Machine's backup potential is reduced and is not recommended for use with FileVault. If an alternate backup solution is required, iBackup provides a freeware solution that allows on-demand and scheduled backup and recovery of individual files while you are logged in. http://www.apple.com/downloads/macosx/system_disk_utilities/ibackup.html
- Free Space:
When FileVault is enabled the user's Home folder is copied (not moved) to a protected space and the original is not deleted until the end of the process. This means that prior to enabling FileVault, the free space on the hard drive should be equal to or greater than the size of the Home folder. This free space requirement is also necessary in the event that FileVault is disabled. If you do not have this amount of free space available, then it may be necessary to offload some of the files in your home directory to an external device before beginning the process and then migrate the files over to the protected Home file once the process is complete.
- Open your System Preferences panel and click Security (circled in red below).
- On the General tab, select the items below to ensure maximum security.
- On the Firewall tab, select "Allow only essential services" to prevent unauthorized users from accessing your computer remotely.
- On the FileVault tab, click the button labeled "Set Master Password".
- On this screen you will set a Master Password that can unlock FileVault protected accounts. This is a feature that is designed to provide recovery for accounts. Set this password as something you won't forget, but ensure that it is different from your user account password. Do not lose or forget this password; this password cannot be recovered or reset once it is set.
- You will now be prompted for the password affiliated with your current user account.
- After your password is accepted you will be prompted to confirm that you want to turn on FileVault. On this screen, be sure to check the option to "Use secure erase". Once you click "Turn On FileVault" the computer will not be accessible for 1-2 hours depending on hardware.
NOTE: If your system is dual-boot or features a utility partition (recovery or Dell Media Direct) it is not compatible for PGP Whole Disk Encryption. If you have a Dell Inspiron M1210, Dell E5400 or Dell XPS please call AskIT at 205-996-5555 before attempting to encrypt your machine with PGP.
Please review the list of devices that are incompatible with PGP.
To successfully install and configure PGP, you will need the following:
- Administrative privileges
- An active connection to the Internet
- A physical keyboard - tablets without keyboards are unable to use the software
- One of the following operating systems: Windows 7, Windows Vista, XP Home or Professional 32-bit (SP2/SP3), XP Pro 64-bit (SP2), XP Tablet 2005, Windows 2000 (SP4)
- 512MB RAM
- 64MB hard disk space
Prepare Your Computer
- Back up your data - Prior to downloading or installing any encryption software such as PGP, be sure to back up your data to a trusted source. Devices such as external drives, CDs, DVDs and network drives are recommended for storage of important documents. it would also be a good idea to ensure that your have the ability to reinstall any important software if any data loss should actually occur.
- Defragment - Prior to encryption, you may wish to defragment your computer to speed up the encryption process. To do so, click the Start menu. Point to Programs>Accessories>System Tools, and then click Disk Defragmenter. Click the Analyze button; a report will appear telling you whether or not defragmentation is recommended. If it is, click the Defragment button to begin; if not, close Disk Defragmenter and proceed to the next step.
- Check the disk for disk errors - Under normal operation, many hard drives do not exhibit any signs of corruption or flaws, but when the data on the drive is encrypted, those issues can present a greater problem leading to file corruption, and in some cases complete loss of the operating system. In order to identify and correct these issues before any loss is incurred, SpinRite was purchased for the campus and is available on the IT Software Library site for faculty and staff. The software will assist you in creating a bootable CD that will scan and correct any disk errors. This step is optional, but is also highly recommended.
- Check power and network connections - Before installing, be sure your computer is plugged into a wall outlet and has an active network connection.
Download and Install PGP Software
- Go to the UAB Software Library, located at www.uab.edu/it/software. Locate the appropriate PGP software and click to begin downloading.
- Prior to installation, be sure to close all running programs and save anything you are working on.
- Navigate to where you saved the software and launch the PGP installer. In the PGP Desktop window, select English.
- Read the licensing agreement, select "I Accept" the licensing agreement, and click Next.
- Click Nextagain.
- The installer will start copying files into place.
- Click Yes to reboot. When the computer has rebooted and you log in, the PGP Setup Assistant should automatically appear.
- When prompted for domain credentials, enter your BlazerID and password.
- Select "I am a new user", and click Next.
- Click Next.
- The next box to pop up will be a prompt to create a passphrase user. Enter the username and password you use to log into your system. In many areas of campus, this is also your BlazerID and password with a domain of UAB.
- The program should begin to automatically encrypt the disk in the background while you go about your normal work. Note: Encryption may take up to eight hours. If necessary, you can shut down the computer (Start>Shutdown>Turn off computer), but DO NOT abruptly power off the system.
- When the encryption of the boot drive is complete, the lower icon will become a solid padlock.
- From this point on, prior to booting Windows, you will receive a gray PGP boot screen in which you are prompted to enter the passphrase that you entered during setup. Entering a correct passphrase permits access to the machine and will log you into the Windows operating system through the single sign-on feature.