Multi-factor Authentication (MFA)

What is multi-factor authentication, or two-factor authentication?

MFA is a login method that confirms a user's identity by prompting for two or more pieces of evidence (or factors) prior to a successful login. Verifying your identity using a second factor prevents anyone but you from logging in, even if that other person knows your password. You can use your own smart phone with the Duo Mobile app or IT will provide you with a physical device (Token) which will generate a random 6-digit number for you to enter.

How It Works

When you log in to the Sonoma State homepage, you will be taken to a second screen that will require you to either select "Send Me A Push," which will send a notification to your phone for authorization within the Duo application or enter in a 6-digit number from your physical Token.  If you select the "Remember me for 12 hours" checkbox, you will not be prompted for MFA for 12 hours on that device and browser. This is only required for use of Online Services or specific online applications such as OnBase.  MFA is not required to log in to your computer or applications such as Outlook or Mac Mail.

Learn more about Duo multi-factor authentication with this video.

Why are we implementing MFA?

During a recent security audit, the CSU required that SSU implement multi-factor authentication on campus. MFA adds an additional layer of security by keeping your account protected (and the data you have access to) even if your password is compromised.

Who will use MFA?

Campus users who have access to level one data will be required to enroll in MFA. A representative from Information Technology will be in contact with you soon if you have this level of access. IT will also organize informational sessions for training and implementation.