Multi-Factor Authentication (MFA)
Overview
The purpose of Multi-Factor Authentication (MFA) is to create a layered defense requiring more than just a username and password to access protected resources. This is accomplished using a secondary, single-use authentication method established on your account.
This additional layer of authentication will only be required when accessing resources outside of the Owen networks. This means any time you are working at your computer in the office or on campus you will not be required to provide any additional authentication. You will be required to enter this additional authentication when accessing resource outside of Owen. This includes:
- Email on your phone – Authentication is required during initial setup or whenever your password is changed.
- Microsoft Teams on your phone – Authentication is required during initial setup or whenever your password is changed.
- Web Portal (link) – Authentication is required during initial login. If you are on a private or home computer you have the option to “Stay signed in?”. If you select this option you will only be required to enter your credentials and secondary MFA once every 30 days.
- VPN – Authentication will be required every time you connect.
Enrollment
The first step in setting up your account for MFA is to choose an enrollment type. There are a couple of options.
- Authenticator app – This is an application that is installed on your phone. Once setup this application will provide notifications on your phone when an MFA approval is required and allow you to approve or deny the request. Instructions for enrolling your device for using this authentication method are available here MFA – App
- Text messages – When this method is selected you will receive a text message with a one-time-use numeric code which is entered into the app or page requesting authentication. Instructions for enrolling your phone for use with text message authentication is here MFA – Text Message
You will have 48 hours between when you are notified by the IT Department your account will require MFA and when it will be enforced. It is important that you choose your preferred MFA method and perform the enrollment process during this time. By enrolling your device and ensuring it is ready to go before enforcement it will ensure that you are ready and eliminate or greatly reduce the chance you will have any issues or problems once enforcement has commenced.
Instructions
For each application or web page that we have indicated will require MFA we have put together documentation. These documents should help walk you through the prompts you will see as MFA is requested within the app or website.