Managing Your Multifactor Authentication Settings

Overview of MFA

Multifactor Authentication (MFA) is the primary line of defense for our corporate network. It requires at least two forms of verification before granting access to internal resources. This typically involves something you know (your password) and something you have (a mobile device or hardware token). By adding this second layer, we reduce the risk of unauthorized access by over 99%, even if your primary password has been compromised through a data breach or phishing attempt. It is the most effective tool we have to protect company and client data.

Updating Your Methods

If you receive a new mobile device, it is critical to update your MFA settings before discarding the old one. Navigate to the Security Dashboard on the company intranet. Select 'Update Security Info' and follow the prompts to add a new device. We recommend using the Authenticator App over SMS, as it is more secure against SIM swapping attacks. The app uses time-based one-time passwords (TOTP) that do not require a cellular signal to function, making it ideal for travel or areas with poor reception. During the setup process, you will be asked to scan a QR code; ensure your camera permissions are enabled for the app to complete this step.

Lost or Stolen Devices

In the event that your primary MFA device is lost or stolen, contact the IT Help Desk immediately via our emergency line or by visiting the IT bar in person. We will revoke the existing tokens and active sessions to ensure that unauthorized parties cannot gain access to your account. Once your identity is verified through alternative means, we can provide a temporary bypass code to allow you to log in and set up a replacement device. We also recommend setting up a secondary backup method, such as a hardware security key or a secondary trusted phone number, to avoid complete lockouts in the future.