When Google announced the login URL change, U-M was not given a cutover date and we had very little time to come up with a workaround. We pushed out information as soon as we were able to and we regret any inconvenience and disruption this has caused for the U-M community. We also worked with U-M leadership and sent a letter objecting to both the change and the manner in which it was handled. That letter has led to discussions between our leadership and theirs about how these kinds of changes can better be managed going forward. Google has received similar messages from many other institutions. (Also see our original post.)
In the meantime:
- We are actively working on a long-term solution to the situation based on allowing shared departmental accounts to log in via Kerberos and Weblogin.
- We hope to test and implement this process within the next several weeks.
A final thought...
- We will post further updates here and contact the owners of the corresponding MCommunity groups soon with more information.
While difficult and extremely inconvenient, this change will be beneficial in the long run. The ability the bypass single sign-on (SSO) login has been a security concern for many and Google is now closing that issue. If our on-campus solution using Kerberos works, it also has the potential to allow shared accounts to use more services in the domain (such as YouTube).