Skip to main content Skip to navigation
Washington State University
Information Technology Services

SSO Multi-Factor Authentication (MFA)

Applications Requiring MFA Beginning October 29, 2020

  • Office 365 including Outlook, Teams, and more.
Will MFA Authentication Make my Device Susceptible to Public Records Requests?Although the verification codes are technically public records, they likely would be considered transient and therefore could be deleted by the employee after use. If there was a records request for the codes, the employee would be asked to provide any codes that still existed on their phone. Under current case law, if the completeness of the employee’s response to the request were challenged, the employee could be asked to provide an affidavit. Seizure of a phone is highly unlikely.

Multi-Factor Authentication (MFA) for myWSU

Close to 50,000 users per month are now successfully using the new Okta Single-Sign-On (SSO) system for many WSU network applications.

Preparing for MFA in Your Area: MFA Options

Users have five options available when setting up MFA. Users should ideally select two of the following options, one is required, and a second one serves as a backup resource:

  • Okta Verify Mobile App – two options include a code that changes every 60 seconds, or a Push method, to approve authentication
  • Google Authenticator Mobile App – a new code generates every 60 seconds
  • SMS – a texted code will be sent to the user’s configured mobile device
  • Voice call – an automated message providing a 5-digit code will be delivered to the user’s configured telephone (home, mobile, or desk)
  • USB Security Key – this device, similar to a flash drive, inserts into USB port

Implementation Timeline for WSU Applications

  • MyWSU will be the first WSU application requiring MFA, beginning December 19, 2019, offering access for 24 hours each time you use MFA to access the application. Completed!
  • Other WSU applications already using the new SSO system will require MFA beginning August, 2020. Completed!
  • Workday, WSU’s new system for finance, human resources, payroll, and grants management, will utilize MFA when it launches in January of 2021.

 

 

Support Contacts

Contact ITS
Send General requests to crimsonservicedesk@wsu.edu

Contact ITS Communications
itscomm@wsu.edu

Contact Okta assistance
crimsonservicedesk@wsu.edu

Pullman
Website – crimsonservicedesk.wsu.edu
Email – crimsonservicedesk@wsu.edu
Phone – 509-335-4357

Vancouver
Email – van.evita@wsu.edu
Phone – 360-546-9770

Spokane
Email – spok.it.help@wsu.edu
Phone – 509-358-7748

Tri-Cities
Email – tricities.tchelp@wsu.edu
Phone – 509-372-7334

Everett
Email – everett.it@wsu.edu
Phone – 425-405-1555

Okta Single Sign On (SSO) FAQs

 

What is Okta, SSO, and MFA?

You may hear different terminology when discussing how to access WSU’s network resources. To clarify the differences:

Okta is the name of the vendor who supplies WSU’s current SSO login process and MFA (Multi-Factor Authentication) service.

SSO is an acronym for “single sign on,” which is the name for the authentication or log in process that allows WSU users to access most university software applications with a single set of login credentials.

MFA or Multi-Factor Authentication (sometimes referred to as “two-factor” or “extra verification”) is WSU’s added security authentication step that requires a user to enter their network ID (NID) and password, followed by a code received through one of the following options:

  • Authentication app on a mobile device (Okta Verify or Google Authenticator)
  • Voice call
  • USB Key
  • Text message (SMS)

Users who need to access WSU resources will receive an invitation to set up their WSU NID (network ID) or friend ID (FID) and password, as well as MFA preferences, at account.wsu.edu.

Departments Requesting WSU Single Sign On Functionality

Departments who wish to request WSU SSO for their applications should contact ITS. Please submit a request through the self-help portal at crimsonservicedesk.wsu.edu with your name, phone number, application name, and application description. After submitting your service desk ticket, a member of ITS will reach out to you with more information and instructions on how to begin testing for on-boarding your application(s).

Current List of Applications Now Using MFA

There are approximately ninety applications currently using Okta that require MFA. Please reach out to your department’s system administrators or technical support staff for information on your local applications. The list of top university-wide applications can be found below.

Applications Requiring MFA Beginning October 29, 2020:

  • Office 365

Top Applications Currently Requiring MFA:

  1. myWSU
  2. Adobe Creative Cloud
  3. Zoom video conferencing
  4. Canvas
  5. Blackboard
  6. WSU Mobile
  7. Matlab
  8. eXplorance Blue

—and more.

WSU Apps Using Okta Security
ad.wsu.edu
Adobe Creative Cloud
Amazon Web Services
Amazon Web Services SPO
AOI ALN
AOI Apps
AOI eLearning
AOI oidc-test
ASIS - Umbraco - SA CMS Dev
ASIS-Siteimprove
ASIS-SSO_Dev
ASIS-SSO_Prod
Blackboard Learn
Blackboard Stage
Budget Planning System
CAHNRS Authenticate OAuth
CampusM
Canvas
Canvas - TEST
CCB EduSourced
CCB Suitable
Cloudways
COE AWS AppStream
Comevo Online Orientation
CVM eSuggestion Box
CVM eSuggestion Box - Test
CVM Group Manager
CVM Preceptors
CVM TRC
CVM Veterinary Teaching Hospital Community Practice Calendar
CVM Veterinary Teaching Hospital Computer Survey/Audit
CVM Veterinary Teaching Hospital Faxing Center
CVM Veterinary Teaching Hospital Item Database
CVM Veterinary Teaching Hospital Medical Record Tracking
CVM Veterinary Teaching Hospital Patient Safety Report
CVM Veterinary Teaching Hospital Scrub Tracking
CVM VTH Online Payments
DocuSign
E.Flo Colleagues
E.Flo Colleagues Dev
EIT TWILIO FLEX
ESFCOM Admissions
ESG Github
ESG IBM Cloud
ESG Jenkins
EYP LMS
FAIS - AIMS Test
FAIS Signage TEST
Flex Cougar Connector
FLEX Helpdesk
FLEX SFS
FLEX Vancouver
G Suite
iGrad
iGrad Test
Inteum
Inteum DEV
ITS Global Protect Test VPN
ITS-Forms
ITS-FormsSSO
Juristat
Legacy Apps
Meraki CIT Test Lab SAML
Meraki Everett SAML
Meraki Extension Network
Meraki FullAdmin TEST
MFA Test
MyWSU
NanoVest
Oracle Cloud Infrastructure
PnC - Web Portal
ResLife - Qualtrics 360
Salesforce-OC
Settings
Shibboleth SP
Slate Enrollment CRM
Slate Test
SplunkES
TC FreePBX
TC PaperCut
TC Persona Campus SAML
Title IX Training
UREC-Attic-Dev
VAN Apporto
VAN ENCS AutoLab
VAN ENCS AutoLab-Dev
WADDL Portal Admin
WADDL Portal Admin Test
webSSO
Zoom
ZoomRoom Web App

 

 

Adobe Creative CloudESG Jenkins
Amazon Web ServicesEYP LMS
AOI ALNITS Global Protect Test VPN
AOI AppsLegacy Apps (Mainframe, WSU Notices)
AOI eLearningMFA Test
ASIS-SSOMyWSU
Blackboard LearnOracle Cloud Infrastructure
Budget Planning SystemResLife - Qualtrics 360
CAHNRS AuthenticateSettings
CampusMSlate Enrollment CRM
CanvasTC FreePBX
CCB EduSourcedTC PaperCut
CCB SuitableTC Persona Campus SAML
CVM eSuggestion BoxTitle IX Training
CVM PreceptorsUREC-Attic-Dev
CVM Veterinary Teaching Hospital Community Practice CalendarVAN ENCS AutoLab-Dev
CVM Veterinary Teaching Hospital Faxing CenterWADDL Portal Admin
CVM Veterinary Teaching Hospital Item DatabasewebSSO (Ucomm)
CVM Veterinary Teaching Hospital Medical Record TrackingZoom
CVM Veterinary Teaching Hospital Patient Safety Report
EIT TWILIO FLEX
ESFCOM Admissions
ESG Github
ESG IBM Cloud

Student using multi-factor authentication

More than 45,000 users per month are now successfully using the new Okta Single-Sign-On (SSO) system for many WSU network applications. With phase one complete, the project team continues to prepare for a December implementation of multi-factor authentication (MFA) for myWSU.

This second phase brings a greater need for partnership and collaboration as WSU areas determine which MFA tools to utilize along with other necessary decisions regarding policy, implementation, and long-term program management.

Preparing for MFA in Your Area: MFA Options

In preparation for MFA implementation, ITS asks you and your area staff to think through your organization’s needs and identify best solutions based on the options listed below. ITS particularly needs your assistance in thinking about all business cases specific to your area that may require unique solutions.

Users will have five options for MFA. Users should select two of the following options, one is required, and a second one serves as a backup resource:

  • Okta Verify Mobile App – two options include a code that changes every 60 seconds, or a Push method, to approve authentication
  • Google Authenticator Mobile App – a new code generates every 60 seconds
  • SMS – a texted code will be sent to the user’s configured mobile device
  • Voice call – an automated message providing a 5-digit code will be delivered to the user’s configured telephone (home, mobile, or desk)
  • U2F Security Key – this device, similar to a flash drive, inserts into USB port

Implementation Timeline for WSU Applications

  • MyWSU will be the first WSU application requiring MFA, beginning December 19, 2019, offering access for 24 hours each time you use MFA to access the application.
  • Other WSU applications already using the new SSO system will have the opportunity to add MFA beginning March 19, 2020.
  • Workday, WSU’s new system for finance, human resources, payroll, and grants management, will utilize MFA when it launches in July of 2020.

Okta SSO FAQs

What is Okta SSO?

Okta SSO is the Single sign on (SSO) resource for WSU.

  • Users will receive reminders to reset their SSO password every 6 months
  • For assistance creating an Okta-compliant password, google ‘password generator’ and find a number of online sites ready to help.
  • Already have your Okta password, but need to get back to Okta password management site? Visit account.wsu.edu anytime.

Departments Requesting Okta Single Sign On Functionality

Departments who wish to request Okta SSO for their applications should contact ITS. Please submit a request through the self-help portal at crimsonservicedesk.wsu.edu with your name, phone number, application name, and application description. After submitting your service desk ticket, a member of ITS will reach out to you with more information and instructions on how to begin testing for on-boarding your application(s).

Current List of Applications Now Using Okta Single Sign On

Adobe Creative CloudESG Jenkins
Amazon Web ServicesEYP LMS
AOI ALNITS Global Protect Test VPN
AOI AppsLegacy Apps (Mainframe, WSU Notices)
AOI eLearningMFA Test
ASIS-SSOMyWSU
Blackboard LearnOracle Cloud Infrastructure
Budget Planning SystemResLife - Qualtrics 360
CAHNRS AuthenticateSettings
CampusMSlate Enrollment CRM
CanvasTC FreePBX
CCB EduSourcedTC PaperCut
CCB SuitableTC Persona Campus SAML
CVM eSuggestion BoxTitle IX Training
CVM PreceptorsUREC-Attic-Dev
CVM Veterinary Teaching Hospital Community Practice CalendarVAN ENCS AutoLab-Dev
CVM Veterinary Teaching Hospital Faxing CenterWADDL Portal Admin
CVM Veterinary Teaching Hospital Item DatabasewebSSO (Ucomm)
CVM Veterinary Teaching Hospital Medical Record TrackingZoom
CVM Veterinary Teaching Hospital Patient Safety Report
EIT TWILIO FLEX
ESFCOM Admissions
ESG Github
ESG IBM Cloud

Information Technology Services

Contact

Send General Requests to crimsonservicedesk@wsu.edu

MFA Self-Help

Set up

Smartphone Applications

MFA Authentication

Troubleshooting

Fraudulent Reports

MFA Recovery

U2F Key Options

OKTA SSO Self-Help

Sample Activation

Unlocking Account