Multi-Factor Authentication (MFA) for Students

With cybersecurity threats becoming increasingly sophisticated, Laurier is joining institutions around the world in adopting mandatory multi-factor authentication (MFA).

MFA helps keep digital assets, information, and user identities of our community safe – it's an easy way to protect your Microsoft 365 email and single sign-on (SSO) account. MFA adds an extra layer of protection to prevent hackers from getting into your account, even if they have your password.

To get started: 

• Set up MFA.
• Got a new phone and can't login?
• Find more helpful information. 

Learn more about the implementation process and see frequently asked questions.

Set Up MFA

Registering your device for MFA is easy and will only take a few minutes.

1. Go to auth.wlu.ca/MFA. 
2. Select and set up your MFA options:
   • Code generated by the Microsoft Authenticator smartphone app (recommended for most MFA users as it offers the best experience).
   • Push notifications.
   • SMS text messages to your mobile phone.
   • Security key: A small physical device that can be connected to a device to provide a second factor of authentication. *No mobile phone required for this option*
3. Create emergency login codes.

It is highly recommended that you set up MFA on at least two devices or set up a minimum of two MFA options (e.g., Microsoft Authenticator App and SMS text messages for example). This set-up will ensure you have a back-up MFA option available, if needed.

Security Key Option

Microsoft provides a list of the security keys that are compatible. We recommend the Yubico security key (available for USB-A and USB-C ports).

Laurier strives to provide barrier-free access to digital technologies. If you prefer a security key and need financial assistance, please email support@mylaurier.ca for more information on financial assistance for purchasing a Yubikey. 

Emergency Login Codes

Emergency logins codes should only be used when you are in an emergency situation and you forget, lose, or damage your mobile device or security key, or are experiencing an issue with your MFA.

Create and manage your eight-digit emergency login codes:

1. Go to the Laurier MFA Management app.
2. Click the "Get Emergency Login Codes" button and sign in using your Laurier email and password.
   • To view current emergency login codes, click "Get Emergency Login Codes."
   • To generate new emergency login codes, click "Generate New Emergency Login Codes."
   • To print the latest emergency login codes, click the "Print" button.
   • To send emergency login codes to your personal email, click the "Send Email" button.

Securely store your emergency login codes:

• Store your emergency login codes in a safe, accessible place nearby you, such as your wallet.
• Do not store your emergency login codes on Single Sign-on (SSO)-protected services such as your Laurier email account, as you won't be able to access them without your phone or security key.
• Never share your emergency login codes with anyone.
• You can generate new emergency login codes at any time by going to the Laurier MFA Management app.

Manage Your MFA

Suspend MFA in Emergency Situations or Forgot Your Device at home?

If you have issues completing your MFA authentication and need access to a Laurier system immediately, you can use your emergency login code to temporarily suspend MFA for 24 hours.

Emergency logins codes should only be used when you do not have access to your usual MFA method. For example, when you forgot, lost, or broke your mobile device or hardware token.

1. Go to the Laurier MFA Management app.
2. Click the “Suspend MFA (Emergency)” button.
3. Click the “Suspend MFA” button.
4. Sign in with your username (e.g., abcd1234@wlu.ca) and password.
5. Provide your emergency login code. Click the “Submit” button.

Don't have your emergency login codes? Call the ICT Service Desk at 226.243.6393. The ICT Service Desk will be able to suspend your MFA for 24 hours. 

Did you get a new device and don't have access to your old device for MFA?

1. Navigate to the Multi-Factor Authentication Self-Service Reset Portal
2. Fill out the required questions to receive an automatic reset. 
3. If your reset is successful, visit the MFA configuration page, sign in with your Laurier email address and password. You will receive a “more information required” message. Proceed through those prompts to register for MFA on your new device.

If your MFA reset request fails, please call the ICT Service Desk at 226.243.6393. The ICT Service Desk will be able to manually reset it for you. 

Stolen Phone or Tablet

Don't worry, your account is safe. A phone/tablet alone is not enough to log into your account. Contact the ICT Service Desk.

If you were the victim of theft while on campus, you can report the incident to Special Constable Services by phone at 519.885.3333. They are available 24/7.

What You Need to Know

Places MFA Is Required

MFA is required in order for you to access:

• Microsoft 365 applications, including your Outlook email, Teams and OneDrive.
• Student information systems, including LORIS, MyLearningSpace, Zoom, SAFEHawk App, Navigator, Library Course Reserves and Qualtrics.

Cellular Data Use and Cost

You do not require a cellular data plan or an internet connection to use the Microsoft Authenticator app. The push notifications method uses very little cellular data and will use Wi-Fi if available.

Text messages are sent only when you request them and would be billed by your carrier like any other text message or inbound voice call.

Key Benefits

Hackers will always try to get our passwords, whether through phishing attacks, guessing attacks or by compromising other websites.

Key benefits of MFA include greater cybersecurity and a reduced risk of having your accounts accessed by someone other than yourself. MFA also:

• Hackers will not be able to access and use your account to further their attacks.
• Provides peace of mind knowing that your account has an additional layer of protection, even if your password is compromised.
• Is easy to set up and use.
• Is a common process, like those used with internet banking and social media platforms.

Accessibility

Laurier strives to make its digital resources and services accessible to all users, including those with disabilities who may also be using assistive technology. ICT and Accessible Learning have reviewed the MFA options in collaboration to assess the accessibility options. Please do not hesitate to reach out with suggestions for improvement.

If you have any questions about MFA and accessibility, please contact the ICT Service Desk or Accessible Learning.