Follow these simple steps:

1. Log into e-Learn through Blu, by going to https://blu.berkeley.edu/
2. Select the “Login to Blu” button in order to authenticate and have access to personalized information, services and online resources
3. Once your personalized Blu page is displayed, you should select the “e-Learn” link under the Self Service Group.
4. Please be patient, the e-Learn – Berkeley page takes about 30 seconds to display.
5. At this time, you can customize your page by creating a study plan and adding favorites
6. Take a moment to explore each option under your unique e-Learn portal

 E-learn is administered by the Center for Workforce Development, for questions or information, please contact Alan DeHerrera at deherrera@berkeley.edu

 If you have problems accessing the e-Learn portal, please enter a CHOPS request at http://helpdesk.chance.berkeley.edu/

How to access CHOPS?  Most COIS supported user’s currently have an icon on their desktops labeled CHOPS.  For those who do not, you need to open a browser and go to http://helpdesk.chance.berkeley.edu/

 How to update activity on a request?

1. Select Incidents
2. Click on the specific Incident
3. Select the “Activity” tab
4. Select Add Activity

 How to check current Incident’s status?

1. Select Incidents
2. Click on the specific Incident
3. Select the “Activity” tab
4. Check the Activity log

 For new requests, do the following:

1. Select New Incident
2. Make sure to enter information on all fields, especially the Summary and Description fields
3. Select the “Submit” button.
4. You will get an e-mail confirmation for your request.  If you do not get an e-mail confirmation, your request did not go through.  Please re-submit the request.

• Only do business with reputable, well established companies.  Make sure that you verify the legitimacy of the company before you provide them with personal or financial information.
• Make sure that you take advantage of security features such as:  passwords, site keys, and security questions.  All of these add an extra layer of protection.
• Make sure that you are aware of the company’s privacy policies.  You need to know how a company will use or distribute your information.  Most companies allow customers to request that their information not be shared with other companies.
• Do not publicize personal information in public forums.
• Use and maintain anti-virus and firewall software for your personal computer.  These provide protection against viruses that may steal or modify data on your computer.
• Keep yourself informed of all your accounts activities.  Pay attention to your statements and request copies of your credit reports.  Please keep in mind that companies have different policies for notifying customers when they discover that someone has accessed their databases.  Things to look for:
  • Unusual charges on your bills
  • Phone calls or charges for products that you have not purchased or made
  • New accounts appearing on your credit report
  • Unexpected denial of charges to your credit cards

 What to do if you discover that your identity has been stolen?

1. Contact by phone and in writing all companies and banks where you have accounts.  Close all accounts to make sure that future charges are denied.
2. Contact the main credit reporting companies (Equifax, Experian, and TransUnion).  Make sure that they place fraud alerts on your credit reports to prevent new accounts from being opened.
3. File a police report so that there is an official record of the incident
4. If other information was stolen, make sure that you contact the corresponding agency.

•  On the Web browser (Firefox or Internet Explorer), you will see the presence of a  yellow padlock icon on the status bar (bottom right corner).  The lock should be closed or locked.  This symbol signifies that the web site uses encryption to help protect any sensitive personal information such as credit card numbers, social security numbers, payment details, etc.
• On a secure site, the web site’s URL will begin with “https” rather than “http”

 If any of the sites you visit have either of the above characteristics, this means that the site contains a certificate.  You can view the certificate by double clicking on the yellow padlock.  A dialog box opens with the following information: purpose of the certificate, who it’s issued to, who it was issued by and when it expires. You may further verity the legitimacy of a  certificate by making sure that the “Issue to” domain name matches the Web site domain name.  Another way of looking for the properties of a site certificate is by opening Internet Explorer, go to Tools, Internet Options, select the Content tab and the click on the Certificates button.

 Please keep in mind that many outside vendors require for Certificates to be loaded, if you get any messages to install certificates, please contact us so that we can assist you with this and to verify that this is a legitimate request.

 https://net-auth.berkeley.edu/cgi-bin/krbcpw

Please remember to also update your MS Outlook email password, when you change your Calnet passphrase (you DO NOT need to change the user name) – your email uses your Calnet passphrase for authentication. For instructions on, how to change your password in Outlook, please refer to this COIS tip (updated to include Outlook 2010).

Calnet ID – Best Practices

1. Please do not share your Calnet ID passphrase with ANYONE. It is the most sensitive password that you have while at UC Berkeley.

2. It is recommended that you change your Calnet passphrase, once every 3 months.

3. If your password has been compromised or you think it may have been compromised, please change your password immediately.

4. Having trouble selecting a new passphrase? Please refer to: https://calnet.berkeley.edu/id-requirements.html

Outlook 2003

1. Click on the Tools menu on the top.
2. Select Email Accounts.
3. Select View or change existing email accounts, then click the Next Button.
4. Highlight your account name and click the Change… button on the right-hand side of the window.
5. In the password field, delete the password already in there (Please DO NOT change the user name).
6. Now, please type the same password that you login to your computers with.
7. Please click on Next.
8. Please click on Finish.

Outlook 2007

1. Click on the Tools menu on the top.
   
2. Select Account Settings.
   
3. First, select the email account that you want to change the password for.
   
4. Please click on Change on top tab.
   
5. In the password field, delete the password already in there  (Please DO NOT change the user name).
6. Now, please type the same password that you login to your computers with.
7. Please click on Next.
8. Please click on Finish.

 Outlook 2010

1. Click on File.
2. Select Info.
3. First, select the email account that you want to change the password for.
   
4. Please click on Change on top tab.
   
5. In the password field, delete the password already in there (Please DO NOT change the user name).
6. Now, please type the same password that you login to your computers with.
7. Please click on Next.
8. Please click on Finish.

And you’re done…!

What is Verdiem?

Verdiem is an automated power management software utility introduced by COIS, in cooperation with the Office of Sustainability.

What does Verdiem do?

This software utility will monitor your computer for inactivity and automatically turn off your PC in the evening if you forget to shut down your PC at the end of the day.

What are the benefits of using Verdiem?

• Verdiem saves energy.
• Verdiem is good for the environment.
• Verdiem reduces energy costs for the campus.

  Who is affected by these changes?
  

Verdiem has already been running on your systems for over 6 months now. This second phase specifically affects those users who connect to their machines from home. Beginning October 1^st these users, will need to “wake” their machines (Step 1) and then connect to their machines (Step 2):

Step 1 – Wake the machine.

1.a. Finding the name of your machine:

You can find the name of your computer by clicking on the Start button.  Find the My Computer icon and right-click it.  Select Properties from the menu that appears.

Select the Computer Name tab when the Properties window appears.  The name of your computer will appear under the full computer name.  IST-HFA-D29-A-VM5.campus.berkeley.edu is the computer name displayed in the screenshot below.  Take note of the first part of the full computer name and write it down.  In this case it is IST-HFA-D29-A-VM5.

1.b. Accessing the Wake On Web site

Open a web browser and enter the following URL:
http://wakeonweb.berkeley.edu

Use your CalNet ID and passphrase to authenticate.

Next, enter the computer name you obtained by following the instructions above into the text box and click the Search button.

Click the Wake button to turn on your computer.

(CWST_IN_PROGRESS) means a signal has been sent to turn your computer on.

Click Wake again after a couple of minutes.  If you see the message change to (CWST_ALREADY_ON) you can go ahead and remote into your computer.

Step 2 – Connect to the machine

In this step everything remains the same as before, Once your machine is awake, you will connect to it as you were before. For more information on remote desktop, please read: http://coistipofthemonth.wordpress.com/2009/05/24/working-remotely/

What are departmental email accounts?

Departmental email accounts are accounts that are owned and shared by a department and were requested separately and in addition to personal email accounts.

Departmental email accounts also include role-based email accounts, such as vcadmin@berkeley.edu, evcp@berkeley.edu, etc.

What are the changes implemented by Calmail in regards to departmental email accounts?

Step 1: Associating Email Accounts with Calnet Identity

Two months ago Calmail initiated a campaign to associate a Calnet ID with a departmental/role-based email account. To this effect, emails were sent out asking the users of such email accounts to provide Calmail with the Calnet ID of the person these accounts should be associated with.

If you haven’t already done so, please email eligible@berkeley.edu with the departmental email account and the Calnet ID of the person you want it associated with.

Step 2: Accessing Departmental Email on Calmail

Once the email account has been associated with your Calnet ID, and you wish to access it over the web – please visit: calmail.berkeley.edu and “Log in to SquirrelMail”

Upon logging into Squirrelmail you will be asked to choose the email account you want to access. If you wish to read email for the departmental email account, please click on it:

Step 3: Sharing the Account with other users

If you wish for other users to have access to a particular departmental email account owned by you, please DO NOT give them your Calnet credentials. Instead, please follow the following steps.

1. Please go to calmail.berkeley.edu and click on Manage

2. Then please select the departmental email account you want to manage:

3. Then please click on “Authorization”

4. Please click on Add New Authorizations

5. Please enter the email address of the person you wish to assign the permissions to:

6. Then please check “Authorized” and “Submit Changes”:

Now the person should have the same access that you have to the email account and the account will appear in the list of available accounts once he or she autheticates using their own Calnet ID at calmail.berkeley.edu

To un-authorize a user, simply remove them from list of authorized users.

This is how students or temperory hires should be assigned access to shared departmental email accounts.

Next Tip: Changing your email password in MS Outlook.

Phishing is a criminally fraudulent process of attempting to acquire sensitive information such as usernames, passwords and credit card details by masquerading as a trustworthy entity in an electronic communication.

Specifically at work, phishing emails can be targeted to acquire your Calmail and Calnet/computer login information.

Can you provide me with an example of a phishing email?

An example of a phishing email that was sent out to steal Calmail login credentials.

Calmail:

—–Original Message—–

From: System Administrator [mailto:mcquaywe@mnstate.edu]

Sent: Wednesday, May 20, 2009 3:53 AM

To: undisclosed-recipients:

Subject: Mailbox Has Exceeded Storage Limit

Dear Webmail User,

This message was sent automatically by a program on Webmail which periodically checks the size of inboxes, where new messages are received.

Your mailbox has exceeded the storage limit set by your administrator. You may not be able to send or receive new mail until your mailbox size is increased by your system administrator.

To help us re-set your SPACE on our database prior to maintain your INBOX, you must contact your system administrator by replying this e-mail and enter

your:

Current Username: { } and PW: { } to increase your storage limit.

You will continue to receive this warning message periodically if your inbox size continues to exceed its size limit or between 18 and 20 MB.

Thank you for your cooperation.

System Administrator

This email is intended only for the use of the individual or entity to which it is addressed and contains information that is privileged and confidential.

How do I distinguish a phishing email?

1. Phishing emails ask you to verify your account information by asking you to provide login information.
2. Phishing emails tell you that you’ve won a large sum of money, or you will be paid a large sum of money for little or no work.
3. Phsihing emails use scare tactics: “your account will be closed if your do not respond within 48 hours” or “you’ve exceeded your mailbox quota and your account will be closed.”

Will my account administrators ever ask me for my account information?

NO. Your account administrators for Calnet, Calmail, Calagenda or any other campus system will NEVER ask you for your account information. Please remember: if they need to login to your account for any reason, they have the ability to simply reset your password.

What steps has COIS taken to prevent phishing scams?

1. Internet Explorer 7 has a built in phishing filter, which alerts you in case you visit a phishing site.
2. MS Outlook 2003 (SP2) has phishing protection, where suspicious emails are moved to the “Junk Mail” folder and links in the email are disabled.
3. Windows Defender installed on all COIS machines helps you avoid spyware and other malicious software, that can be a part of social engineering scam.
4. IST – Calmail blocks email replies to known phishing senders.

What steps can I take to prevent phishing scams?

1. Please be vigilant.
2. Please make sure any email asking for any information from you is from a trusted source.
3. Please forward the copy of the phishing email to consult@berkeley.edu and cc your local COIS tech.
4. Please make it a habit to change your passwords at least once a year.
5. Please remember: your account administrators will NEVER ask you for your login information.

What do I do if I have been victimized in a phishing scam?

1. Please open a CHOPS ticket immediately.
2. Your local COIS tech will work with you to change your passwords to campus systems.
3. If the information compromised belongs to a non-campus system, please contact the customer support for that company immediately.

Affiliate User Accounts include:

• User accounts for students working in Administrative departments.
• User accounts for third party vendors or campus associates needing temporary/limited access to COIS managed resources.
• User accounts for part-time employees whose Active Directory accounts are being used for access with a non COIS supported unit on campus

How do I request an Affiliate User Account?

An affiliate user account can be requested through the CHOPS request system. When requesting an affiliate user account, please be sure to include:

First Name and Last Name

The nature of the affiliate account – student account, third party vendor or part-time employee

Anticipated date for expiration of the account. For student accounts the standard expiration date is set for the end of semester, unless requested otherwise.

Name of the sponsor of the affiliate account. This sponsor is usually the supervisor or the department head. COIS will assume this sponsor to be the requestor of the account if this is not specified in the ticket.

Please note: When requesting an affiliate account for a student, please do not include the Student ID of the student, as it constitutes a FERPA violation. The first and the last name is sufficient.

How are Affiliate User Accounts different?

• Affiliate accounts are set up with the same functionality as regular employee accounts, with the following notable exceptions:
• All affiliate accounts are pre-pended with “!cois-“ and in most cases are followed by the first initial and last name of the user: “!cois-jdoe”.
• Most Affiliate Accounts are set to expire (unless requested otherwise), whereas regular employee accounts are not.
• Most Affiliate Accounts do not have an H: drive, whereas regular employee accounts do. Units are encouraged to create a “Student” folder on the G: drive for saving student-related work.
• Most Affiliate Accounts are not set to use MS Outlook for email, whereas regular employees are.
• Most Affiliate Accounts are not set up with Calagenda access, unless requested otherwise.
• Most Affiliate accounts do not have access to CHOPS and can request service by asking their supervisor to put in a CHOPS ticket.