MFA Options

Multi-Factor Authentication (MFA)

MFA is a security measure that enhances the protection of your university accounts by requiring multiple forms of verification before granting access. 
This additional layer of security ensures that even if your password is compromised, unauthorized users will not be able to access your account without the second form of verification.

At WSU, MFA is an essential part of safeguarding sensitive information and maintaining the integrity of our digital resources.

The following MFA security methods are available for use at WSU:

• Okta Verify: Approve a push notification via this mobile app

• Okta Verify for Windows or macOS (FastPass): Approve a notification via this desktop app

• Google Authenticator: View a time-based one-time passcode via this mobile app

• Security Key: Insert a physical, specialized key into the device to authenticate

• Biometric Authenticator: Authenticate via fingerprint or facial recognition

The methods above fall into two primary types of MFA solutions: software and hardware.

• Software solutions typically involve applications like Okta Verify and Google Authenticator. These apps generate time-sensitive codes or push notifications to your smartphone, which you must approve to complete the login process.

  Software solutions are convenient and flexible, allowing users to authenticate from virtually anywhere with their mobile device.

• Hardware solutions involve physical devices such as USB security keys (e.g., YubiKey). These devices must be inserted into your computer to verify your identity.

  Hardware solutions offer a high level of security as they are less susceptible to phishing attacks and malware compared to software solutions. However, they require the user to carry the physical device, which can be a limitation for some.

Both software and hardware MFA solutions are available at the university, providing students, faculty and staff with options that best fit their needs and preferences.

To review recommended MFA options but device, please visit Multi-factor Authentication Options by Device

More About MFA Factors

Additional FAQs can be found at MFA Factors FAQ

Q: What’s the definition of an MFA factor?

A: An MFA factor, also referred to on account.wsu.edu as a security method, is the way or ways a user chooses to identify themselves for the purpose of accessing their accounts in addition to their password. MFA-protected services help to ensure that even if a password is compromised, the account itself still has layers of security against attacks.

Q: Why are the text and call MFA factors being retired?

A: MFA factors in general vary in their effectiveness guarding against phishing attacks, and text and call factors are easier for malicious actors to intercept and use. As attacks evolve, security measures evolve, too.

Q: Of the available factor types, are there some that are recommended over others?

A: Yes. The most secure and highly-recommended MFA factor options available are Okta Verify, followed by Google Authenticator. Both are apps available on the Apple App Store for iOS devices and Google Play Store for Android devices.

Q: Do I only need to set up one MFA factor?

A: It’s recommended to have at least two MFA factors in place. This ensures you have at least one backup option in case your first choice is inaccessible (e.g., in the event of a lost device).

Lost or Stolen MFA Device

Review recommendations for recovering access to your WSU account if you are unable to complete MFA with your primary MFA device: Lost or Stolen MFA Device

If you do not have a compatible MFA device and are unable to purchase a key, please review the options here: Multi-factor Authentication Options by Device

Communications Assets

Digital resources are available for download and distribution by WSU communications and support teams across university platforms and services. These assets include messaging about the March 25 removal of SMS and Voice Call for completing MFA during the WSU login process: MFA Security Method Change Assets