MFA FAQs

An ITS representative asked me for my MFA code. Do I tell the person my MFA code?

No. An ITS representative will NEVER ask you for your code. NEVER tell anyone your MFA code.

An ITS representative asked me for the answers to my security questions. Do I tell the person my answers?

No. An ITS representative will NEVER ask you for answers to your security questions. NEVER tell anyone the answer to your security questions.

How does MFA work?

MFA requires more than one method of authentication to access an application(s). First, a user will be required to successfully pass the first layer of authentication by entering his/her OneID credentials. Second, the user will be required to successfully pass the second layer of authentication by entering the MFA credentials selected by the user.

What applications are currently using MFA at this time?

Only Banner 9 Admin Pages.

Will I be able to access Banner 9 Admin Pages without using MFA?

No

Will Aggie Access Online require MFA?

Not at this time

What other applications will require MFA?

Employee email is the next application that will require MFA. An implementation date has yet to be determined. The campus community will be notified as to when employee email and other selected applications will require MFA.

Will I have to register for MFA for each application that will use MFA?

No. You only have to register for MFA once.

How do I register for MFA?

Visit the MFA webpage.

What are my login credentials to access the MFA User Log In portal ?

Use your OneID credentials.

How many MFA methods do I have to register?

Two. First, you have to register a primary method. Then, you register a secondary method.

What are the MFA primary method options currently available?

  • Text Message = receive a code in a text message to verify MFA on a mobile phone
  • Mobile App = use the Microsoft Authenticator app to verify MFA on a mobile phone
  • Phone Call = receive a call on your office phone or mobile phone to verify MFA

What are the MFA secondary method options?

There is only one secondary option which is to provide responses to security questions.

Which primary MFP method is the right choice for me?

Base your decision on the primary method that fits best with your routine job duties. For example, if you’re frequently on your office phone with customers and you have to log into an application that requires MFA, specifying your office phone number for the phone call method will require you to put the customer temporarily on hold because the MFA phone method will call your office phone. This may not be the right primary method for you.

Will ITS download and install the MFA mobile app on my mobile phone?

ITS does not provide assistance with downloading and installing mobile apps. ITS recommends that users contact their mobile carriers for support.

During the MFA registration process, I have to setup security questions for additional security verification which is the secondary MFA method. Should I select questions whereas the responses can be obtained from my personal social media presence?

No. If you select the option of providing the name of your favorite pet and you have this information on your Facebook page, you’re not helping to safeguard university information resources.

Do I use a combination of special characters, upper case, and/or lower case letters when creating responses for security questions?

Creating complex responses to security questions is recommended. For example, if your response is balloon, entering B@!!0on is a more complex response than balloon.

I need to access the portal and the device I use for primary MFA isn’t accessible. How do I use my secondary method for MFA?

  • First, you have to successfully pass the first layer of authentication by entering your OneID credentials on the portal screen.
  • If Phone Call is your primary method, wait approximately 1 minute for a login failure message to display on a Select Option screen. Select answer security questions method.
  • If Text Message is your primary method, click Cancel at the One-Time Passcode screen. When the Select Option screen appears, select answer security questions method.
  • If Mobile App is your primary method, wait approximately 1 minute for a login failure message to display on a Select Option screen. Select answer security questions method.

I need to access an application that requires MFA and the device I use for primary MFA isn’t accessible. How do I use my secondary method for MFA?

  • First, you have to successfully pass the first layer of authentication by entering your OneID credentials on the first screen for the application.
  • If Phone Call is your primary method, wait approximately 1 minute. Click "Use a different verification option” at the bottom of the screen. Next, select answer security questions method.
  • If Text Message is your primary method, click “Use a different verification option” at the bottom of the screen. Next, select answer security questions method.
  • If Mobile App is your primary method, click “Use a different verification option” at the bottom of the screen. Next, select answer security questions method.

If I decide to use the text option and I don’t want to use my personal mobile phone, will ITS provide me with a mobile phone?

No. Departments are responsible for determining whether an employee will be issued a university mobile phone because of the monthly expense the department would incur.

Will using USB security keys/fobs be a primary method option (OATH Token) for MFA at some point? If so, when?

Yes. ITS has made progress with our operational support plan for security keys/fobs. ITS will provide an update before the start of the Fall 2019 semester. Check the Technology and Data Security webpage for updates.

Has ITS standardized on a security key/fob that it will support?

Yes

Will ITS provide me with a security key/fob?

No. Departments are responsible for purchasing the standardized security key/fob for employees.

How do I request assistance if my MFA authentication fails?

  • Go to the Aggie Help portal.
  • Go to the upper right hand corner and click to login .
  • Enter OneID credentials to access the Aggie Help Portal.
  • Click Create a Ticket in the Requests and Incidents box.
  • Go to the Account Management section, move cursor over the Banner 9 Admin Pages tile, and click OneID/Multi-Factor Authentication Failed.
  • Complete request and submit.

How do I request assistance with registering for MFA?

  • Go to the Aggie Help portal.
  • Go to the upper right hand corner and click to login .
  • Enter OneID credentials to access the Aggie Help Portal.
  • Click Create a Ticket in the Requests and Incidents box.
  • Go to the Account Management section, move cursor over the Multi-Factor Authentication tile, and click Installation Help.
  • Complete request and submit.