Why We Are Using Multifactor Authentication

Click here for instructions on how to set up Multifactor Authentication on your Taylor account.

Historically, your Taylor account has been protected with a username and password. Due to the growing number of sophisticated cyberattacks targeting the university, we are increasing that protection by introducing Multifactor Authentication. This change will apply to all employees and any students who access protected data stored in Banner or Salesforce while working for the university.

Multifactor Authentication, or MFA, works by adding a second method for verifying your identity when logging in. You are likely already using Multifactor Authentication with your bank, retirement accounts, or an online vendor such as Amazon or eBay.

What are factors?
These factors generally fall into one of the following categories:

  1. Something I AM , such as a thumbprint or facial recognition.
  2. Something I HAVE , such as a smartphone or security key.
  3. Something I KNOW , such as a password or PIN.
    Link: What is Multifactor Authentication?

In practice, the something you know is your password. This means when you log into a service or application with your username and password, you are then prompted to provide verification using something you are or something you have. This could be approving a prompt on your phone, typing in a unique PIN generated by an application, or something else that helps verify your identity. Adding that second factor will protect your account by ensuring that, even if someone were to gain access to your password, that individual would be unable to log in, as s/he would not have access to that other factor.

Registration

In order to enroll your account for Multifactor Authentication, you will need to set up one of more of the following methods. We strongly recommend setting up at least two methods.

For Multifactor Authentication , you can choose from the following options.

Good

  • Voice: a phone call to your office or mobile phone that requires you to verify your login.

Better

  • Authenticator (Push Notifications): a Microsoft application on your phone that provides a PIN for you to enter at a prompt.
  • Software Tokens: A third-party Authenticator, such as Google Authenticator or Authy , that provides a PIN for you to enter at a prompt.

Best

  • Authenticator (Phone Sign-In): a Microsoft application on your phone that provides information about the login request, and allows you to Approve or Deny it.
  • FIDO2 security key: A small USB key that can be linked to your account and used as a token. Generally only used if you do not own a smartphone.