Multi-factor authentication (MFA), which involves the use of a secondary form of verification in addition to a password, provides an added layer of security when accessing applications that handle private or sensitive information. Because this secondary authentication is unique to your account, you must set up and manage your MFA options as a component of your Colby account. The following instructions will guide you through selecting and setting up your MFA options.

Configuring and testing your factors for the first time will take about 10-15 minutes. As part of the process, you will need to have your factors – a telephone, cell phone, smart phone, or Yubikey – ready to configure and test. When you are ready to begin, follow the instructions below.

Have questions about MFA?  Check out our frequently asked questions!

Accessing your Okta settings

  1.  Start by clicking here and authenticating with your Colby username and password.
    1. If you are prompted to choose a security question and picture, please do so. This is part of your initial Okta account setup and activation.
  2.  You’ll next be directed to your Okta personal settings page. If you see the “Edit Profile” button on this page (shown below), click it. If you do not see the button, continue on to step 4.
     
  3. Enter your Colby password again if prompted for additional identification verification.
  4. Please DO NOT change your password! – a password change is not required at this time, and doing so will have consequences across other Colby services.
  5. To begin configuring your MFA settings in Okta, scroll down to the section labeled “Extra Verification” where you will see a list of available MFA options, as shown below:

Notice that each option has a ‘Set up’ button next to it. While only one extra verification/MFA method is required, it is important that you setup at least two verification factors to ensure an alternative should one method (like your cell phone) be unavailable. The following steps will guide you through selecting factors based on whether or not you have a cell phone, smart phone, or no mobile phone at all:

First, configure at least one telephone factor

It is strongly recommended that you configure both of these options.

Setting up voice call verification

  1. Click the button marked “Setup” next to “Voice Call Authentication”
  2. Complete the required fields to store a telephone number where verification codes can be sent. This should be a phone number that you are most reachable at, such as a cell phone, as it will be used to deliver authentication codes for verification purposes.

Setting up text message (SMS)

  1. Click the button marked “Setup” next to “SMS Authentication” (SMS stands for “short message service” and is equivalent to text messages)
  2. Complete the required fields to store a telephone number where verification codes can be sent.

Second, if you have a smart phone (iPhone or Android), configure a mobile app

Setting up Okta Verify Mobile App (Preferred)

  1. Click the button marked “Setup” next to “Okta Verify”
  2. Follow the instructions presented on the screen, or for more detailed instructions click here and scroll down to “Procedures,” select “Set up Okta Verify as a New User” and follow the instructions to install and configure the Okta Verify mobile app on your smartphone.

Setting up Google Authenticator

If you are already comfortable with the Google Authenticator app, adding Okta is simple. Please note that the Google Authenticator app will not support ‘push’ authentication for Okta, it will only support numeric codes – this is why the Okta Verify app is the recommended mobile app for Okta. You can also set up both the Okta Verify app and the Google Authenticator app and decide for yourself which works better.

  1. Click the button marked “Setup” next to “Google Authenticator” and follow the instructions to add Okta as a keyed service.

If you do not have a smart phone

Setting up Security Key (optional)

  1. This option available in cases where a smartphone app or text message delivery is not an option.
  2. Contact the ITS Support Center at x4222 or support@colby.edu for more information on key activation.

 

Testing your Factors

You will be prompted for MFA as you authenticate to certain services through Colby’s Okta portal. If you want to try it out, you can test your MFA settings at any time by clicking on the ‘Configure and Test MFA’ icon (chicklet) in your Okta home page:

After clicking the ‘Configure and Test MFA’ icon shown above, you’ll be prompted for an MFA factor. When you are prompted for your MFA factor, you can select which one you’d like to use by clicking the pull-down arrow to the left of the factor icon. The example shown below is for SMS (text message), but you can select and test one of your other factors like Okta Verify Push or a Yubikey by clicking the menu button to the right of the SMS icon. The red arrow shown below is highlighting the menu button – you won’t see the red arrow in the real dialog.