Changes between Version 18 and Version 19 of mfa
- Timestamp:
- 03/02/17 11:20:55 (8 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
mfa
v18 v19 1 1 2 == Two-factor Authentication== 2 == Two-factor Authentication with UA Single Sign-On == 3 === see also: UA VPN using 2FA === 3 4 4 5 Two-factor authentication requires users to provide a "second factor" in addition to the correct password to authenticate and gain access to resources. If your password is "something you know", the second factor can be described as "something you have" such as your working telephone or smartphone. [In principle the second - or third - factor could be "something you are" such as fingerprint or voiceprint recognition.] … … 6 7 The UA Identity Provider has been extended to allow use of two-factor authentication using Duo Security. When two-factor authentication is invoked (as described below) you will first provide your identifier and UA Password just as you usually do for most applications. Some services will soon require use of 2 factor authentication. You can opt in to use of 2 factor authentication by sending email to ua-iam-dept@alaska.edu. 7 8 8 What does the user experience look like ?9 What does the user experience look like for 2 factor authentication to web services? 9 10 10 11 Once your identity is flagged for 2 factor authentication, your first access of one of the relying services triggers a login screen requesting your UA Username and UA Password (figure 1A). Your UA Username and UA Password are verified against UA’s directory service (never exposed to the service itself). Once verified, you will be prompted to provide a second factor – something you have (figure 1B). Assuming you use the recommended option “Send Me a Push”, you will need to accept the request pushed to the Duo app on your smart phone (figure 1C).