Multi-Factor Authentication (MFA) Guide
- To set up your Okta security settings, see the guides: myHighline and ctcLink MyAccount.
What is Multi-Factor Authentication?
- The quick definition: A way to verify who you are using more than just your password.
Our identity and access system (which manages all the logins to our apps) is called Okta, which uses robust Multi-Factor Authentication (MFA) methods for security and identify authentication. MFA is an advanced way to verify the user’s identity when they sign in to an application, by using more than just a username and password (which can be easily hacked), such as the use of another known device to prove your identity.
It makes your account much more safe and secure, because it’s significantly harder for a hacker to imitate you.
Some of the authentication factors (ways of verifying who you are) can include:
- Something you know – Your Username, Password, PIN, Passphrase, Pattern
- Something you have – A physical Cryptographic Identification Device, a Security token
- Something you are – Biometric Identification, Fingerprint, Face ID
- Somewhere you are – Being physically located in a building, being attached to a specific network via a specific port inside the building, etc.
Why is Multi-Factor Authentication important to me?
Hacking technology continues to advance rapidly. It is crucial to stay ahead of these security attacks. The more layers involved, the more difficult it is for anyone to try and imitate you to access your personal information, or gain entry to the broader system you are a part of.
For example, your ctcLink account displays vital personal data, such as name, social security number, and date of birth, which is all that’s needed to attempt to steal your identity. There may also be financial data, like direct deposit, financial aid, or payment information, leaving you at risk of theft.
MFA is being required on certain systems by federal regulations and cybersecurity insurance requirements in order to protect personally identifiable information and protect systems from cyberattacks.
It is equally crucial to take your account’s security seriously, as it can impact the safety of all other users’ personal data at Highline by potentially giving a hacker a way to break in to the whole system.
Choose your Okta MFA Authentication Methods
What are “Authentication Methods?”
These are the security apps you can use to verify your identification when signing in to the Highline student tools such as myHighline, ctcLink, Canvas, and others. You are able to use a single Authentication Method/app for most of them.
What do we recommend for the most secure account?
First of all, we recommend that you use a strong password, and then set up two or more security factors on whichever Authentication Method you choose so that you have multiple possible ways to log in.
-
Option 1: Install Okta Verify (recommended)
- This is an app on your phone that can be used to verify your identity through any of these methods:
- Push Notification – A message that will pop up on your phone just like other notifications or alerts, generated by the Okta Verify App.
- Code Generator – Requires you to open the Okta Verify App, which displays a code on your phone for you to enter during the login process.
- Okta Verify App Installation: Go to your phone’s app store to download the free Okta Verify app for Android or Apple, then follow our Okta Verify app guide.
- This is an app on your phone that can be used to verify your identity through any of these methods:
Option 2: SMS (Text Message)
- SMS (Text Message) – You will be sent a text message with a code to enter during the login process.
Option 3: Other Authenticators
- Google Authenticator is also available, as well as other one-time-use password generating apps such as Microsoft Authenticator and Authy.
Option 4: Other Solutions
If you require any other kind of MFA method, please submit a ticket to the Help Desk and we will work with you to find the best solution.
Questions?
- Please contact the Help Desk.