Multi-Factor Authentication

• iPhone
• iPad (suggested as secondary authentication device)
• Android Phone
• Android Tablet (suggested as secondary authentication device)
• Hardware Tokens

Yes, you can set up your tablet as an authentication device with SecureAuthMFA, as long as you have access to an app store that provides the download and a camera on your device.

Contact IT Service Desk immediately. We will help secure your accounts and get you back in business as quickly as possible.

Please contact the IT Service Desk who can advise you of alternative methods for temporary access.

Please refer to the SecureAuthMFA User Guide to download the mobile app and register the new phone. Make sure to remove your old phone, which will be listed in the SecureAuthMFA mobile app.

Access the SecureAuthMFA application. Under Profile (found in the upper right corner of the Dashboard view), select edit (the pencil on paper icon in upper right corner), remove the old phone number and enter the new phone number. You will receive a verification code to complete the process.

You can only use one phone number with your SecureAuthMFA service. We recommend either using your phone number or your office landline.

You can add multiple mobile devices as long as you have access to an app store listing the ItsMe app and a camera on your device.

To remove devices, open the SecureAuthMFA app on the device you wish to “unpair”. Select Settings and select “LOGOUT/UNPAIR”. If you do not have access to this device, please contact the Service Desk as they are able to assist you.t

MFA is required for web applications, regardless of the device you are using. However, you will not need to use MFA to access the laptop or desktop.

• SecureAuthMFA’s mobile app for Push, QR codes and Time-based One-time Passcode (TOTP) when offline
• Hardware security key or token provided by L&C IT (future phase)
• Phone call to your mobile device or landline

• Use of the SecureAuthMFA application does require wifi or cellular service to receive a push notification to your mobile device.
• Time-based One-time Passcode (TOTP) generated in the SecureAuthMFA or with a hardware token DO NOT require any cellular or wifi network connectivity.
• A hardware security key or token does not require wifi or cellular service.
  

• Hardware tokens will be available and charged to your department. This is scheduled in a future phase of this project.
  

Yes, each code will expire, limiting the ability to use that specific passcode.

• When traveling, it is a good idea to prepare by setting up multiple methods for MFA. For example, if you normally use the SecureAuthMFA application on a mobile device, you might visit the IT Service Desk to check-out a security key or hardware token. While our vendor states the MFA service will work abroad, your mobile device may be unable to receive push notifications to the ItsMe application.
• When traveling abroad, it is important to note that internet access in certain countries (China, Russia, and others) is restricted and some L&C services may not work as expected. It is advisable to visit the Service Desk in advance of your travels.
• Please see the “ Does SecureAuthMFA require wifi or cellular service? ” FAQ

• Never approve a MFA notification requesting approval for access that you did not initiate.
• If you receive a MFA notification you did not request, immediately change your password for the associated account. You should also consider updating your passwords for any accounts that use the same credentials.
• Always create unique, strong passwords for each of your accounts.

At this time,only person accounts are to be registered for enforcement of MFA. More information will be forthcoming on the use of and configuration of department or shared accounts.

At this time, only employees will be impacted. This will not have an impact on department accounts, contractors, students, student employees, etc.