• Report an IT Security Incident
  • Request Help
  • Help & Support
    • Working/Learning Remotely
    • Request Help
    • Live Chat
    • Track a Ticket
    • Knowledge Base
    • Getting Started
    • Contact Us
    • ITS Alerts Sign Up
  • Service Catalog
    • Accounts & Access
    • Communications & Collaboration
    • Computers & Software
    • Data, Reporting & Analytics
    • Network & Internet Services
    • Pilot Services
    • Professional Services
    • Research Computing
    • Teaching & Learning
    • University Applications
    • Web, Servers & Hosting
  • About ITS
    • Our Team
    • Strategic Plan
    • Annual Reports
    • Awards
    • Student Employment
  • Working with ITS
    • Architectural Standards Review Board
    • Projects & Project Management
    • Technology Investment Request Lifecycle
    • Business Intelligence
    • Enterprise Data Integration Services (EDIS)
    • GMU-TV
    • IT Security Office
  • Alerts & Bulletins
    • Unplanned Outages
    • Phishing Alerts
    • Maintenance
    • Bulletins
    • Spotlights
    • After Action Reports
    • Archives
  • Report an IT Security Incident
  • Request Help
X Hide

Information Technology Services

Skip to content
  • Help & Support
    • Working/Learning Remotely
    • Request Help
    • Live Chat
    • Track a Ticket
    • Knowledge Base
    • Getting Started
    • Contact Us
    • ITS Alerts Sign Up
  • Service Catalog
    • Accounts & Access
    • Communications & Collaboration
    • Computers & Software
    • Data, Reporting & Analytics
    • Network & Internet Services
    • Pilot Services
    • Professional Services
    • Research Computing
    • Teaching & Learning
    • University Applications
    • Web, Servers & Hosting
  • About ITS
    • Our Team
    • Strategic Plan
    • Annual Reports
    • Awards
    • Student Employment
  • Working with ITS
    • Architectural Standards Review Board
    • Projects & Project Management
    • Technology Investment Request Lifecycle
    • Business Intelligence
    • Enterprise Data Integration Services (EDIS)
    • GMU-TV
    • IT Security Office
  • Alerts & Bulletins
    • Unplanned Outages
    • Phishing Alerts
    • Maintenance
    • Bulletins
    • Spotlights
    • After Action Reports
    • Archives

Authentication, Authorization & Account Services (AAA)

Home > Service Catalog > Accounts & Access > Account & Access Management > Authentication, Authorization & Account Services (AAA)
Service Summary | Availability | Getting This Service |

Service Summary

Mason provides authentication services to protect Mason applications, such as Patriot Web and Banner. Authentication service provisioning is available and automatic for eligible students, faculty, and staff. Additional information and instructions for non-system administrators are available in the knowledge base.

  • 802.1x Configuration Help
  • Active Directory Federation Services
  • Central Authentication Service (CAS)
  • Shibboleth
Two-Factor Authentication (2FA)

Two-factor Authentication (2FA) is required for all Mason employees (faculty, staff, and student workers) and students. For more information, see the Two-factor Authentication (2FA) service page.

> 2FA Account Login to enroll in 2FA or manage your 2FA Account

Active Directory

Accounts are automatically created upon employment or enrollment at Mason. The Active Directory account is automatically activated when a user activates their NetID or email account.

Central Authentication Services

If you are not enrolled in Two-Factor Authentication (2FA), you will not be able to access any CAS-enabled websites/applications. If you attempt to log in with your NetID and Patriot Pass Password, your access will be denied. You must enroll in 2FA immediately in order to access these systems.

To log in to CAS, Mason employees enter their NetID and Patriot Pass Password (first factor) and confirm their identity using a physical device (second factor). The physical device may be a smartphone, tablet, mobile phone, landline phone, or Yubikey.

Service Offerings for System Admins

IMPORTANT

All websites and applications using Active Directory Federation Services (ADFS), Central Authentication Service (CAS), or Shibboleth must be registered with ITS.

System administrators may request authorization, authentication, and account services for their websites and applications.

Active Directory Federation Services (ADFS)

Active Directory Federation Services (ADFS) provides central authentication and authorization of all users and computers that connect to MESA and desktop management services for Windows-based computers through Mason's Service Center, a self-service tool for users that provide security updates, remote delivery of software, and group policies. Generic accounts for specialized applications or services may be created and assigned with approval by Architectural Standards Review Board (ASRB).

Generic accounts for specialized applications or services may be created and assigned with approval by IT Security. To submit a request for a generic account, contact the ITS Support Center.

Central Authentication Services (CAS)

Central Authentication Service (CAS) is a single sign-on service used by a variety of Mason websites and applications to authenticate individuals. Its purpose is to permit users to access multiple sites while providing their credentials (NetID and Patriot Pass Password) only once. CAS coupled with 2FA offers a secure environment for sensitive data.

Shibboleth

Shibboleth (Mason Federated Login) is a single sign-on (login) system that allows users to sign in using just one identity to various systems run by federations of different organizations or institutions (oftentimes other universities or public service organizations). InCommon is the Federation currently tied into Shibboleth.

Availability

Requests are processed during normal business hours.

Getting This Service

Requests for authorization, authentication, and account services may require Architectural Standards Review Board (ASRB) approval.

  • Select Register Website or Application to register your website or application
  • Select Request AAA to request CAS or Shibboleth.
  • Select Request ASRB Consultation to request Active Directory (ADFS).
Register Website or ApplicationRequest AAA ServicesRequest ASRB Consultation

Available to:

  • Students
  • Faculty & Staff

Availability:

Unless stated otherwise, this service is available 24/7, excluding planned outages, normal maintenance windows, and unavoidable events. Maintenance windows are Sundays from 7 to 11 a.m. but may be extended to 2 p.m., if needed. If maintenance is required outside of these hours, it will be announced on the Alerts & Bulletins page.

Fee:

There is no charge for this service.

Getting Help:

Assistance for all IT Services is available through the ITS Support Center:

Phone:
703-993-8870
Email:
support@gmu.edu
Hours of Operation:

Monday –Thursday,
8 a.m. – 9 p.m.
Friday, 8 a.m. – 5 p.m.
Saturday, Closed
Sunday, 1 p.m. – 9 p.m.

(closed Thursday 3 p.m. – 4 p.m. for a team meeting)

Walk-in Support

Innovation Hall, Room 226

Monday – Thursday,
8:30 a.m. – 7:00 p.m.
Friday,
8:30 a.m. – 4:00 p.m.

Get Started at Mason

Whether you are a student, faculty, staff member, or a guest visiting the Mason campus, we have resources to help get you started.

Read More

Quick Links

Patriot Pass Password Reset
Submit a Ticket
Track a Ticket
PuTTY
Cisco AnyConnect VPN

Read More

Explore IT Services

A B C D E F G
H I J K L M N
O P Q R S T U
V W X Y Z #

© 2022 George Mason University
4400 University Drive
Fairfax, Virginia 22030

ITS Support Center
703-993-8870
support@gmu.edu
live chat
@GeorgeMasonITS
Innovation, Room 226
Hours of Operation

Monday – Thursday, 8 a.m. – 9 p.m.
Friday, 8 a.m. – 5 p.m.
Saturday, Closed
Sunday, 1 p.m. – 9 p.m.
(closed Thursday 3 p.m. – 4 p.m. for a team meeting)

  • Webmaster