NETCOM Implements Security Enhancements with Army 365
Your Direct A365 Login From Home Goes Away On 10 June 2024 – Use Army AVD
BLUF
Starting 10 June 2024, you cannot access Army 365 applications directly from your home computer using commercial (home) internet. You must use a government computer, a government VPN or the Army AVD program to access A365 email and DoD websites.
- What is the Background of Army 365’s Remote Capability and Security Measures?
- What Resources Were Accessible Directly From Commercial Internet for Army 365 Users?
- What Shift is the Army Making Regarding Commercial Internet Access to Army 365 Services?
- The Army Enterprise Azure Virtual Desktop (Army AVD) to Access A365 Email
- The Army Hypori Android Virtual Machine
- Prepare to Transition to Army AVD to Access A365 Email
Introduction
In a crucial initiative to enhance data security and counter the increasing risks posed by cyber threats, the U.S. Army has unveiled essential modifications to the access protocols for Army 365 services. As remote capabilities evolve and NETCOM introduces more secure options like Azure Virtual Desktop (AVD) and Hypori, the Army protects sensitive data and strengthens its data security. NETCOM urges users to adopt more secure options such as FLOW 3 (commercial internet access) for Army 365 services like A365 email, which will sunset on 10 June 2024 (U.S. Army Network Enterprise Technology Command 2024). This article will detail the upcoming changes, their rationale, and the process for requesting exceptions.
What is the Background of Army 365’s Remote Capability and Security Measures?
During the early implementation of Army 365 in response to the COVID-19 pandemic, access to webmail and downloads was permitted to maintain operational continuity. However, in light of the rising complexity of cyber threats, the Army is shifting towards more secure platforms, including AVD and Hypori, along with solutions such as Intune Mobile Access Management (MAM).
These proactive steps highlight the Army’s dedication to data security and readiness in response to emerging cyber threats. By adopting more secure access methods, the Army seeks to protect vital information and sustain operational effectiveness.
What Resources Were Accessible Directly From Commercial Internet for Army 365 Users?
For almost four (4) years, soldiers and civilians had direct access to the Army’s A365 email and productivity suite. These resources included Outlook, Teams, SharePoint Online, and OneDrive, which are directly from commercial internet and are known as FLOW 3. However, NETCOM soon blocked downloads within these capabilities to enhance cybersecurity measures.
What Shift is the Army Making Regarding Commercial Internet Access to Army 365 Services?
Beginning 10 June 2024, the Network Enterprise Technology Command (NETCOM) will restrict access to all Army 365 services—such as webmail, Teams, SharePoint Online, and OneDrive—via insecure commercial internet channels. We encourage all users to adopt the secure alternatives of AVD or Hypori without delay.
How can users request exceptions for commercial access to Army 365 applications?
Users with unique mission circumstances requiring commercial internet access can submit exception requests at https://go.mil/flow3exception. These requests must be approved by the first O6/GS-15 or higher in the submitter’s chain of command, with the final approval authority resting with designated personnel. NETCOM will not approve convenience requests as your need for quick and less secure access does not override the Army’s data security goals. Leaders, including Commanding Generals and Brigade Commanders, are adjusting to improve their digital footprint by complying with the new directive.
The Army Enterprise Azure Virtual Desktop (Army AVD) to Access A365 Email
The Army is implementing enhanced security protocols for Army Data. The Army Enterprise Azure Virtual Desktop provides a streamlined, single sign-on experience utilizing Army 365 credentials, featuring improved security measures like CAC login and S/MIME email encryption. While we are on the subject, do not use S/MIME when sending to webmail users, they cannot open the email. It may seem easier to encrypt every email, but it is also as easy to ignore every encrypted email which results in poor productivity and personnel not operating off the the common operating picture. Be smart and use encryption properly.
Think of it this way, if everything is encrypted, nothing is encrypted.
Azure Virtual Desktop, or Army Remote Desktop, is a desktop and application virtualization service operating on Microsoft Azure. It enables the delivery of a Windows experience, optimizes Microsoft 365 Apps for enterprises, replaces existing Remote Desktop Services (RDS) like Citrix, and facilitates the management of desktops and applications across various Windows operating systems.
The AVD environment is not like your local unit computer; it is a one-size-fits-all solution and, therefore, will not have all the local applications you need to continue your work. For example, if you are in a Public Affairs unit, you can neither install nor access Photoshop CC from AVD. You will need to continue to use your local system. Additionally, AVD is not meant to be a daily driver for organizations that issue and maintain government-funded equipment (GFE). This includes most units across the components.
The Army Hypori Android Virtual Machine
Hypori, an Android Virtual Machine, employs MobileConnect and EAMS-A for authentication and can be accessed via mobile devices through the Hypori Halo and Mobile Connect applications. Credential installation occurs during onboarding, allowing users to access Army 365 applications and NIPR websites with encryption support.
These proactive steps highlight the Army’s dedication to data security and readiness in response to emerging cyber threats. By adopting more secure access methods, the Army seeks to protect vital information and sustain operational effectiveness.
Prepare to Transition to Army AVD to Access A365 Email
As the Army transitions towards more secure alternatives like Azure Virtual Desktop (AVD) and Hypori for Army 365 services, users need to understand the upcoming changes regarding commercial access. By embracing these secure alternatives and following the exception request process when necessary, users can contribute to the overall cybersecurity posture of Army 365.
Sources / Credit
- Photo Credit: ArmyConnect™
- U.S. Army Network Enterprise Technology Command. 2024. Commercial Access to Army 365. Fort Huachuca, May.