Multi-Factor Authentication
MULTI-FACTOR AUTHENTICATION
MULTI-FACTOR AUTHENTICATION
MULTI-FACTOR AUTHENTICATION
In order to maintain adequate insurance coverage and to further protect the District data from cyber attacks, TIS has implemented Multi-Factor Authentication (MFA).
In order to use MFA your account must be registered for Self Service Password Recovery (SSPR). Click HERE for more information regarding SSPR.
What is Multi-Factor Authentication (MFA)?
MFA is an authentication method used to confirm your identity to allow access to a website or app through at least two pieces of evidence. The two pieces of evidence needed for CUSD staff will be a password and a mobile phone number where a security code can be sent. With MFA incorporating something you know (password) PLUS something you have (mobile phone), the likelihood that your account can be compromised is greatly reduced. This makes YOUR students safer. This makes YOUR District safer. This makes YOU safer.
When will I be required to authenticate using MFA?
MFA will be required to access the following services while outside the District network or while on a personal device:
- VPN - Web VPN & FortiClient
- Office 365
- Webmail
- Canvas
- TrueNorth Logic
- Clever
- Hoonuit
- Zoom
- SchoolDude
- Caponet
Why is TIS doing this?
In a word: security. Criminals have become ever craftier, hackers have become ever sneakier, and students have become ever more capable. That, coupled with the District’s insurance provider’s requirement in order to maintain adequate coverage in the event of a cyber attack.
Do I have to use MFA?
If you intend to access District resources while outside the District network or on a personal device, you will need to use MFA to access the following systems:
- VPN - Web VPN & FortiClient
- Office 365
- Webmail
- Canvas
- TrueNorth Logic
- Clever
- Hoonuit
- Zoom
- SchoolDude
Do I have to use my personal phone?
You are NOT required to use your personal phone. However, opting to not do so means you will not be able to access District resources while outside of the District network.
Does this give TIS access to my phone?
No.
Does this make my phone susceptible to an Open Records Request?
No.
How Does MFA work?
In order to enable your account for MFA, you must have a mobile phone number entered into the Self Service Password Recovery (SSPR). For more information about the SSPR please click HERE.
When you try accessing a District resource from outside the District network or on a personal device, you will be prompted with the following windows:
- The first window will be very familiar to staff as it is the same window used to ask for your email address.
- The second window will also be the familiar window asking for your password.
- After successfully entering your username and password, you will be asked to verify your identity through your mobile phone number. Choosing the “Text” option will send a verification code shown in the next step. The “Call” option will call your mobile phone number. When you answer the call, you will simply press # to complete the verification process.
- If you have selected the Text option you will receive a text message similar to this one.
- Choosing the Text option will present this window where you will enter the verification code in the text message
- Once you have successfully entered your username, password and verification code, you will be signed in and asked if you’d like to stay signed in. If you are on a District or personal device, you may select “Yes.” If you are on a public computer select “No.”