Skip to main content Skip to navigation
Information Technology Services

SSO Multi-Factor Authentication (MFA)

Will MFA Authentication Make my Device Susceptible to Public Records Requests?

Although the verification codes are technically public records, they likely would be considered transient and therefore could be deleted by the employee after use. If there was a records request for the codes, the employee would be asked to provide any codes that still existed on their phone. Under current case law, if the completeness of the employee’s response to the request were challenged, the employee could be asked to provide an affidavit. Seizure of a phone is highly unlikely.

Multi-Factor Authentication (MFA) for myWSU

Close to 50,000 users per month are now successfully using the new Okta Single-Sign-On (SSO) system for many WSU network applications.

Preparing for MFA in Your Area: MFA Options

Users have five options available when setting up MFA. Users should ideally select two of the following options, one is required, and a second one serves as a backup resource:

  • Okta Verify Mobile App – two options include a code that changes every 60 seconds, or a Push method, to approve authentication
  • Google Authenticator Mobile App – a new code generates every 60 seconds
  • SMS – a texted code will be sent to the user’s configured mobile device
  • Voice call – an automated message providing a 5-digit code will be delivered to the user’s configured telephone (home, mobile, or desk)
  • USB Security Key – this device, similar to a flash drive, inserts into USB port

Implementation Timeline for WSU Applications

  • MyWSU will be the first WSU application requiring MFA, beginning December 19, 2019, offering access for 24 hours each time you use MFA to access the application. Completed!
  • Other WSU applications already using the new SSO system will require MFA beginning August, 2020.
  • Workday, WSU’s new system for finance, human resources, payroll, and grants management, will utilize MFA when it launches in January of 2021.

 

 

Support Contacts

Contact ITS
Send General requests to crimsonservicedesk@wsu.edu

Contact ITS Communications
itscomm@wsu.edu

Contact Okta assistance
crimsonservicedesk@wsu.edu

Pullman
Website – crimsonservicedesk.wsu.edu
Email – crimsonservicedesk@wsu.edu
Phone – 509-335-4357

Vancouver
Email – van.evita@wsu.edu
Phone – 360-546-9770

Spokane
Email – spok.it.help@wsu.edu
Phone – 509-358-7748

Tri-Cities
Email – tricities.tchelp@wsu.edu
Phone – 509-372-7334

Everett
Email – everett.it@wsu.edu
Phone – 425-405-1555

Okta Single Sign On (SSO) FAQs

What is Okta, SSO, and MFA?

You may hear different terminology when discussing how to access WSU’s network resources. To clarify the differences in terms for you, Okta is the name of the vendor who provides WSU’s current SSO and MFA services. SSO is an acronym for single sign on, which is the name for the authentication process that allows WSU users to access university software applications with one set of login credentials. MFA or Multi-Factor Authentication (sometimes referred to as Two-Factor or Extra Verification) is WSU’s added authentication step that requires an individual to enter their network ID (NID), password, and then a code received via one of five different options including text message, or an authentication app on a mobile device.

So Okta is the service for WSU that manages user accounts, passwords, authentication, Single-Sign-On, and Multi-Factor Authentication. Users accessing WSU resources will need to set up their WSU network or friend ID and password, as well as MFA preferences, through Okta at account.wsu.edu.

Departments Requesting Okta Single Sign On Functionality

Departments who wish to request Okta SSO for their applications should contact ITS. Please submit a request through the self-help portal at crimsonservicedesk.wsu.edu with your name, phone number, application name, and application description. After submitting your service desk ticket, a member of ITS will reach out to you with more information and instructions on how to begin testing for on-boarding your application(s).

Current List of Applications Now Using Okta Single Sign On

There are approximately sixty applications currently using Okta that will require MFA beginning August, 2020 with the majority of these being localized departmental applications. Please reach out to your department’s system administrators or technical support staff for information on your local applications. The list of university-wide applications can be found below.
University-wide applications that will begin requiring MFA on August, 2020 include:

  • Adobe Creative Cloud
  • Blackboard
  • Canvas
  • Cougar Card
  • HR/Payroll
  • MyWSU
  • User Account Self-Service
  • WSU Mobile App (CampusM)
  • WSU Notices
  • Zoom

 

 

Adobe Creative CloudESG Jenkins
Amazon Web ServicesEYP LMS
AOI ALNITS Global Protect Test VPN
AOI AppsLegacy Apps (Mainframe, WSU Notices)
AOI eLearningMFA Test
ASIS-SSOMyWSU
Blackboard LearnOracle Cloud Infrastructure
Budget Planning SystemResLife - Qualtrics 360
CAHNRS AuthenticateSettings
CampusMSlate Enrollment CRM
CanvasTC FreePBX
CCB EduSourcedTC PaperCut
CCB SuitableTC Persona Campus SAML
CVM eSuggestion BoxTitle IX Training
CVM PreceptorsUREC-Attic-Dev
CVM Veterinary Teaching Hospital Community Practice CalendarVAN ENCS AutoLab-Dev
CVM Veterinary Teaching Hospital Faxing CenterWADDL Portal Admin
CVM Veterinary Teaching Hospital Item DatabasewebSSO (Ucomm)
CVM Veterinary Teaching Hospital Medical Record TrackingZoom
CVM Veterinary Teaching Hospital Patient Safety Report
EIT TWILIO FLEX
ESFCOM Admissions
ESG Github
ESG IBM Cloud

Student using multi-factor authentication

More than 45,000 users per month are now successfully using the new Okta Single-Sign-On (SSO) system for many WSU network applications. With phase one complete, the project team continues to prepare for a December implementation of multi-factor authentication (MFA) for myWSU.

This second phase brings a greater need for partnership and collaboration as WSU areas determine which MFA tools to utilize along with other necessary decisions regarding policy, implementation, and long-term program management.

Preparing for MFA in Your Area: MFA Options

In preparation for MFA implementation, ITS asks you and your area staff to think through your organization’s needs and identify best solutions based on the options listed below. ITS particularly needs your assistance in thinking about all business cases specific to your area that may require unique solutions.

Users will have five options for MFA. Users should select two of the following options, one is required, and a second one serves as a backup resource:

  • Okta Verify Mobile App – two options include a code that changes every 60 seconds, or a Push method, to approve authentication
  • Google Authenticator Mobile App – a new code generates every 60 seconds
  • SMS – a texted code will be sent to the user’s configured mobile device
  • Voice call – an automated message providing a 5-digit code will be delivered to the user’s configured telephone (home, mobile, or desk)
  • U2F Security Key – this device, similar to a flash drive, inserts into USB port

Implementation Timeline for WSU Applications

  • MyWSU will be the first WSU application requiring MFA, beginning December 19, 2019, offering access for 24 hours each time you use MFA to access the application.
  • Other WSU applications already using the new SSO system will have the opportunity to add MFA beginning March 19, 2020.
  • Workday, WSU’s new system for finance, human resources, payroll, and grants management, will utilize MFA when it launches in July of 2020.

Okta SSO FAQs

What is Okta SSO?

Okta SSO is the Single sign on (SSO) resource for WSU.

  • Users will receive reminders to reset their SSO password every 6 months
  • For assistance creating an Okta-compliant password, google ‘password generator’ and find a number of online sites ready to help.
  • Already have your Okta password, but need to get back to Okta password management site? Visit account.wsu.edu anytime.

Departments Requesting Okta Single Sign On Functionality

Departments who wish to request Okta SSO for their applications should contact ITS. Please submit a request through the self-help portal at crimsonservicedesk.wsu.edu with your name, phone number, application name, and application description. After submitting your service desk ticket, a member of ITS will reach out to you with more information and instructions on how to begin testing for on-boarding your application(s).

Current List of Applications Now Using Okta Single Sign On

Adobe Creative CloudESG Jenkins
Amazon Web ServicesEYP LMS
AOI ALNITS Global Protect Test VPN
AOI AppsLegacy Apps (Mainframe, WSU Notices)
AOI eLearningMFA Test
ASIS-SSOMyWSU
Blackboard LearnOracle Cloud Infrastructure
Budget Planning SystemResLife - Qualtrics 360
CAHNRS AuthenticateSettings
CampusMSlate Enrollment CRM
CanvasTC FreePBX
CCB EduSourcedTC PaperCut
CCB SuitableTC Persona Campus SAML
CVM eSuggestion BoxTitle IX Training
CVM PreceptorsUREC-Attic-Dev
CVM Veterinary Teaching Hospital Community Practice CalendarVAN ENCS AutoLab-Dev
CVM Veterinary Teaching Hospital Faxing CenterWADDL Portal Admin
CVM Veterinary Teaching Hospital Item DatabasewebSSO (Ucomm)
CVM Veterinary Teaching Hospital Medical Record TrackingZoom
CVM Veterinary Teaching Hospital Patient Safety Report
EIT TWILIO FLEX
ESFCOM Admissions
ESG Github
ESG IBM Cloud

Information Technology Services

Contact

Send General Requests to crimsonservicedesk@wsu.edu

MFA Self-Help

Set up

Smartphone Applications

MFA Authentication

Troubleshooting

Fraudulent Reports

MFA Recovery

U2F Key Options

OKTA SSO Self-Help

Sample Activation

Unlocking Account

Washington State University