Multi-Factor Authentication (MFA)

Owned by Athena Tate (Unlicensed)
Last updated: Feb 03, 2021
4 min read

Multi-Factor Authentication (MFA) is a standard security practice that requires the use of two or more methods of verifying an account identity. One example might be your bank requiring you to enter a code that was sent to you via text message when logging into your banking website; your username and password are one method of authentication, and the security code is another. MFA provides additional security by requiring more than just a username and password when signing into your account, meaning that if someone obtains your password, they are less likely to gain access to your account.

Beloit College uses QuickLaunch to manage your account and to provide you with MFA options when logging in to Beloit apps and services. Setting up MFA is a one time process, after which you will be prompted to use an additional verification step when logging in. You will also have the option to ‘trust’ a device, such as your personal workstation, to skip this extra step during every login. Suspicious logins, or login attempts from an unknown device or location, will still prompt for a second verification step to keep your account secure.

 

 

How it works

Once enabled for your account, you’ll see an additional security prompt after logging into a Beloit system with your username and password. This helps prevent someone from accessing your account if they somehow obtain your password.

Select an available option, and follow the prompts to verify your identity.

  • Use Security Questions will prompt you to answer 3 of your 5 security questions correctly.

  • Send me an Email sends a code to a non-Beloit email address which you must enter to continue.

  • Send me a Text Message sends a code via SMS to your cell phone which you must enter to continue.

  • Use YubiKey Recovery requires pressing a button on your attached YubiKey device.

  • Use Google Authenticator requires you to enter a one-time passcode from the Google Authenticator app on your mobile device.

You can also check the box labelled “Trust this device” to suppress this prompt when logging in from the same device and location.

Signing in from a new device or location will require you to perform this second verification again.

 

If you receive a verification code at a time when you are not logging into your account, it may mean that someone else is attempting to log in to your account and you should change your password.

 

Setting up MFA

Use the following steps to set up verification options for MFA:

  1. Sign in to password.beloit.edu with your Beloit username and password.

  2. If prompted, re-enter your password and click Submit.

  3. Required: Select and answer five security questions that only you know the answers to, then click Submit.

  4. Medium Security: Click the Email Recovery tab and enter an alternate (non-Beloit) recovery email address.

    • A verification code will be sent to the address you submitted. Enter the code and click Verify to verify your email address.

  5. Medium Security: Click the Phone Recovery tab and enter up to two recovery phone numbers.

    • A verification code will be sent via text message to the phone number you submitted. Enter the code and click Verify to verify your phone number.

  6. High Security: Click the YubiKey Recovery tab to use a YubiKey device.

    1. Click Register YubiKey.

    2. Plug your YubiKey device into your computer and press the button.

    3. Follow the on-screen prompts to verify your device.

  7. High Security: Click the Authenticator tab to use Google Authenticator.

    1. Click Get Started.

    2. Download the Google Authenticator app for your mobile device (Android or iOS).

    3. Click Next, then scan the QR code with the Google Authenticator app.

    4. Click Next, then enter the rolling 6-digit code displayed in the app.

      • This number changes every minute; if the number changes before you have finished entering it, enter the new number instead.

    5. Click Register Google Authenticator to finish setup.

  8. After you have set your recovery options, close the tab on your web browser.

 

 

Managing your devices

You can view a list of devices that have recently logged into your account and choose to trust or untrust them.

  1. Sign in to login.beloit.edu with your Beloit username and password.

  2. Click your username at the top-right corner of the page and choose My Devices.

  3. View and manage devices that have recently been used to log into your account.

    • If you don’t recognize a device, click the Untrust this device link to ensure that future login attempts from that device require MFA verification.

    • If you are sure a device belongs to you, click Trust this device to suppress MFA verification for future logins from that device and location.