Setting Up 2 factor authentication

Your password protects your account. You can also add a second layer of protection with "2 Factor Authentication" so even if somebody manages to steal your password, it is not enough to get into your account. This additional form of authentication is completely independent from your username and password.

How It Works

You will login as usual with your username and password, then enter an additional code from either an Authenticator App, a Security Key or a set of Backup Codes to verify that it is in fact you.

Recommendations

  • Enable more than one 2 factor authentication method such as using both an Authenticator app and Backup Codes!
  • Trust more than one browser/device by clicking the checkbox at the bottom left corner of the login prompt before logging in. This will trust that device for 30 days and you will not be required to enter the additional 2 factor code on that device during the 30 day period. It's best if you don’t trust multiple devices on the same day so they don’t all expire at the same time. The browser/device trust is managed through the use of browser cookies, so if you clear your browser's cookies then you it cancel any existing 30 day trust and cause the two factor authentication prompt to occur when you next login.

3 Options for Setting Up 2 Factor Authentication

Authenticator App (Best for mobile devices - tablet, smartphone)

Using a mobile authenticator app on your smartphone or tablet as a second factor during login. Authenticator apps are available on both Android and IOS devices. Install the authenticator app on your smartphone BEFORE turning on this option. Enabling this option will require that you enter a code generated by the authenticator app as a second factor during the login process.

For step by step insructions see: Using Google Authenticator for 2 factor authentication OR Using Authy for 2 factor authentication

    Security Key (Requires purchasing external hardware)

Requires FIDO U2F Security Key device, typically a USB device, to be attached to the computer you are logging in from. NOTE: Security keys are currently only compatible with the Chrome web browser.

For step by step instructions see: Using a Security Key for 2 factor authentication

Backup Codes (Used as a backup to the other options)

Backup codes come in sets of 10 that you generate at https://myuser.nmu.edu/user. Each of the 10 Backup Codes can only be used once. When a backup code is used it will become inactive. Typically you print them out, keep them in a secure location, and check them off as you use each one. You can generate a new set codes at any point, automatically making the old set inactive.

For step by step instructions see: Using Backup Codes for 2 factor Authentication

Notes:

  • Once you complete these steps, you will be required to use 2 factor to log into MyNMU, MyUser, and other NMU services that require it.
  • If 2 factor authentication is preventing you from accessing NMU Services including MyUser then use MyUser's recovery link to reset your password and change or verify your 2 factor settings.
  • 2 factor authentication on your NMU G Suite account is a separate feature unique to Google. A good overview with links to set up 2 factor authenticaton for your NMU G Suite account is available at https://www.google.com/landing/2step.

See also: 2 Factor Authentication Frequently Asked Questions

Rate this Article: 
Average: 1.7 (6 votes)