Body
UWSP protects user accounts and High Risk data by requiring the use of multi-factor authentication (MFA) when accessing important applications and systems.
Microsoft Authenticator is UWSP's multi-factor authentication solution and is a UW-System mandate.
NOTE: New to UWSP? Your UWSP account must be activated before you set up Microsoft MFA. For help or questions with MFA, please contact the IT Service Desk.
Why is Multi-factor Authentication Important?
Multi-factor authentication protects your personal information and data by adding an additional security layer to your username and password log in.
Microsoft MFA requires a second form of authentication such as you accepting a notification sent to the Microsoft MFA app on your mobile device, or entering a code generated by a security/hardware token (i.e. "key fob").
What are the Multi-factor Authentication Options?
MFA options differ between employees and students. See more about those options below.
Employee MFA Options
UWSP employees may only use the Microsoft Authenticator app or their IT-assigned hardware token for their secondary authentication method.
All employees need to set up the Microsoft MFA app on their mobile devices. Request a hardware token as soon as possible to ensure that a back up authentication method is always available.
Why are these the only allowed secondary authentication methods for UWSP employees?
According to NIST standards (National Institute of Standards and Technology) these provide a higher level of secure secondary authentication which is required for UWSP employees. Less secure secondary authentication methods such as SMS or voice calls will be regularly disabled via an automated script if they are added to an employee account.
Student MFA Options
-
Install the Microsoft Authenticator app on your mobile phone or tablet (IT's recommended method).
-
Receive an SMS or voice call to your mobile phone.
-
Purchase a hardware token from the UWSP Service Desk.
What is a Hardware Token?
A hardware token is a small device that generates a one-time use six-digit passcode.
When logging into a secure UWSP resource you can opt to "sign in a different way" and choose to enter the passcode generated by your hardware token if your mobile device or other authentication option is not available.
There is no need for you to add your hardware token as an additional authentication method to your myaccount.uwsp.edu portal. It will be configured for your account upon receipt.
MFA hardware tokens fit on a keychain making them easy to remember wherever you go.
Contact the IT Service Desk with additional questions!