E-RATE FY25-26 Vendor Questions and Answers

Are any additional licenses or license extensions being requested as part of this request? Section 2.2 - Basic Maintenance of Internal Connections (BMIC) and/or Managed Internal Broadband Services (MIBS)

Could you confirm what "Install Date ARO" refers to? Attachment F "Financial Proposal Form 25-001"

Do you have a list of applications that will utilize the SSO solution? If not, can you provide a rough number of applications and whether or not they use SAML, OAuth, WSFed, or SWA? Section 2.1.1.a "to access district applications and digital resources using one set of credentials..."

We do not have a complete list of applications but we estimate that there are over 250. Most applications are education based, like i-Ready, i-xcel, Adobe Express and Creative Cloud, Google Workspace and are rostered and authenticated172 through Classlink, our existing SSO/rostering platform. Many of the applications are able to use one of the authentication methods listed in the question.

Is M365 in scope to utilize the SSO functionality of the IAM tool?

What Identities are being stored in Duo?

Are student identities stored in Active Directory? If not, where are they stored?

Does the district have an on-prem, cloud, or hybrid environment?

What environments are being utilized to host cloud applications? (AWS, Azure, Google, etc.) • Section 2.1.1.b "Must integrate with the district's existing identity providers (Active Directory, Duo), as well as the existing network and software infrastructure."

Are roles already defined utilizing security groups in Active Directory? Or is there any other method currently in place used to define different user types? • Section 2.1.2.b "Enable role-based access control (RBAC) to ensure users only access resources relevant to their roles..."

Does the district have a preferred MFA methodology? (Duo, TOTP, SMS, etc) • Section 2.1.6.a "implement robust security features, including multi-factor authentication (MFA)..."

Will multiple MFA methods be required? • Section 2.1.6.a "implement robust security features, including multi-factor authentication (MFA)..."

Will MFA be required for every connected application? • Section 2.1.6.a "implement robust security features, including multi-factor authentication (MFA)..."

Are managed services required after the tool has been implemented? • Section 2.2.1 "Provide service and support options with cost..."

Are there on-premises applications or non-SaaS applications that need to be integrated, and if so, can you provide a list of them? Section 2.1.1.a "to access district applications and digital resources..."

Do you have any requirements as to which authentication factors must be supported? Section 2.1.6.a "implement robust security features, including multi-factor authentication (MFA)..."

Will MFA be required for access to computers (as a requirement during the login process to the laptop or computer as opposed to only requiring MFA for access to the SSO portal) and if so, please provide a list of which operating systems need to be supported and whether each is a member of the Active Directory domain? Section 2.1.6.a "implement robust security features, including multi-factor authentication (MFA)..."

How many users will be accessing One Login for authentication within faculty, students and employees?

Will multiple MFA methods be required? Section 2.1.6.a "implement robust security features, including multi-factor authentication (MFA)..."?

What tool or application is being used currently for student MFA on desktops to provide a picture selection? Are security questions acceptable?