SMS and Voice Call MFA Warning

SMS (text message to your cell phone) and Voice Call MFA Options will no longer be available as of March 25, 2025 - Please move now to Okta Verify, Google Authenticator/Software TOTP, or a USB Security Key for Multi-Factor Authentication. For additional information on how to set these up, please review below

Visit account.wsu.edu to edit your WSU profile settings and update your multi-factor authentication (MFA) settings.

To access MFA information for your WSU account, select the Manage Security Methods option:

Homepage for account.wsu.edu

On the Security Methods page, you will see a list of all options you have enabled and those available for set up.

To complete MFA, you have the option to enable one or more of the following security methods:

  • Okta Verify: Approve a notification via this mobile app
  • Google Authenticator: View a time-based one-time passcode via this mobile app
  • Biometric Authenticator: Authenticate via fingerprint or facial recognition
  • Security Key: Insert a physical, specialized key into your device to authenticate

For assistance with the MFA security methods, please contact Crimson Service Desk at crimsonservicedesk@wsu.edu or 509-335-4357.

Table of Contents

Review security method setup instructions in each of the following sections below:

Okta Verify

  1. On account.wsu.edu, select the Manage Security Methods option, find the Okta Verify security method, and select Setup.
    Okta Verify setup option

  2. Verify with your current WSU password. If you already have an alternative security method enabled, you may also be prompted to complete MFA.
    WSU authentication password prompt

  3. Select Set up → for Okta Verify.
    Okta Verify setup prompt

  4. Additional setup instructions for Okta Verify will appear. Please be sure to download the Okta Verify app from the Apple App Store for iOS devices or the Google Play Store for Android devices to continue through the setup process.
    Okta Verify setup instructions

  5. Launch the Okta Verify app on your mobile device and continue through the prompts until you receive the option to Add Account.
  6. For the Account Type, select Organization.
    Account type prompt in Okta Verify app

  7. When prompted to add an account from another device, select Skip if you do not have Okta Verify configured on another device.
    Add account from another device prompt in Okta Verify app

  8. When prompted to scan your QR code, select Yes, Ready to Scan since the required QR code appeared in step five.
    QR code prompt in Okta Verify app

  9. When your camera opens, hold your mobile device up and scan the QR code. Continue through the prompts until you receive an Account Added confirmation and select Done.
    Account added successfully in Okta Verify app

  10. Once successfully enabled, you will receive a You have successfully setup Okta Verify pop-up message.
    Successful set up pop-message for Okta Verify on account.wsu.edu

Review an instructional Okta Verify video for additional support: MFA Tutorial: Okta Verify

Google Authenticator

  1. On account.wsu.edu, select the Manage Security Methods option, find the Google Authenticator security method, and select Setup.
    Google Authenticator setup option

  2. Verify with your current WSU password. If you already have an alternative security method enabled, you may also be prompted to complete MFA.


  3. Select Set up → for Google Authenticator.
    Google Authenticator setup prompt

  4. Additional setup instructions for Google Authenticator will appear. Please be sure to download the Google Authenticator app from the Apple App Store for iOS devices or the Google Play Store for Android devices.


  5. Launch the Google Authenticator app on your mobile device and continue through the prompts until you receive the option to Scan a QR code.

  6. When your camera opens, hold your mobile device up and scan the QR code. A six-digit code will appear in the app.
    Six-digit code in Google Authenticator app

  7. On the original setup instruction page, select Next.
    Setup instructions for Google Authenticator security method

  8. Enter the six-digit code from the app and select Verify.
    Code prompt for the Google Authenticator security method

  9. Once successfully enabled, you will receive a You have successfully setup Google Authenticator pop-up message. The Google Authenticator security method will also have an option to Remove as needed.
    Successful Google Authenticator pop-up message

Security Key or Biometric Authenticator

Please Note

This security method is only compatible with the following web browsers: Google Chrome, Firefox, Microsoft Edge, and Safari.

  1. On account.wsu.edu, select the Manage Security Methods option, find the Security Key or Biometric Authenticator security method, and select Setup.
    Security Key or Biometric Authenticator setup option

  2. Verify with your current WSU password. If you already have an alternative security method enabled, you may also be prompted to complete MFA.
  3. Select Set up → for Security Key or Biometric Authenticator.
    Security Key or Biometric Authenticator setup prompt

  4. Additional setup instructions for Security Key or Biometric Authenticator will appear.
    Security Key or Biometric Authenticator setup instructions

  5. Depending on your operating system, and web browser, your prompt to continue setting up this security method will provide different instructions. However, you do have to accept a prompt before proceeding.
    1. The following process is an example of configuring Biometric Authenticator for Touch ID in Google Chrome on a Mac device:
      1. Select the Your Chrome profile option.
        Passkey options in Google Chrome browser

      2. Select Continue.
        Create passkey prompt in Google Chrome browser

      3. Complete Touch ID or enter your computer password.
        Identity verification with Touch ID or password prompt on macOS

      4. Once successfully enabled, you will receive a You have successfully setup Security Key or Biometric Authenticator pop-up message. The Security Key or Biometric Authenticator security method will also have an option to Remove as needed.


    2. The following process is an example of configuring a Security Key in Firefox on a Windows device:
      1. Select Proceed.


      2. Plug in your specialized security key into your computer. (If you do not yet have a security key, please contact your local IT support team for more information about compatible devices and purchase options. You can also review Security Keys that WSU has tested.)


      3. Once successfully enabled, you will receive a You have successfully setup Security Key or Biometric Authenticator pop-up message. The Security Key or Biometric Authenticator security method will also have an option to Remove as needed.

    3. The following process is an example of configuring a Security Key in Google Chrome on a Windows device:
      1. Select OK


      2. Select OK.


      3. Plug in your specialized security key into your computer. (If you do not yet have a security key, please contact your local IT support team for more information about compatible devices and purchase options. You can also review Security Keys that WSU has tested.)


      4. Once successfully enabled, you will receive a You have successfully setup Security Key or Biometric Authenticator pop-up message. The Security Key or Biometric Authenticator security method will also have an option to Remove as needed.


The first time you plug in your Security Key, the system will request that you create a PIN Number for your Security Key. YOU SHOULD TREAT THIS PIN IS A ONE-TIME SETUP SPECIFIC TO YOUR USB SECURITY KEY! Please be sure to keep your PIN as you cannot reset it, and the system will always ask for the PIN Number after you set it up, even if you remove and try to re-setup this USB Security Key again. (There may be a way to Reset Your USB Security Key PIN - but it isn't guaranteed to work with all keys.)

Once you touch your security key at the end, the system finishes the setup.

When you go to use your Security Key for MFA later, the system will ask for the PIN you set on the key and ask you to touch it again after you have plugged it in.