Multifactor Authentication

Multifactor Authentication

Multifactor Authentication is Coming in April

 

As you may be aware, we are updating Multifactor authentication (MFA) across campus to incorporate ctcLink and Canvas.

MFA will be enabled for all Students for access to BOTH ctcLink and Canvas.

This means that you will be required to enter your ctcLink ID and ctcLink password, PLUS an additional verification in order to sign in.

The projected date for the activation of student accounts is April 15th, 2024

What can I do to prepare for this change?

To make sure that your MFA activation goes smoothly, please log into your ctcLink account BEFORE April 15 to verify that your correct mobile phone number and email address is listed.  You can update these by logging into your ctcLink account, clicking on "My Profile" from the ctcLink menu and going to "Contact Info"

Jump to back to Sections List

What is MFA?

Multifactor authentication (MFA) is a method for signing in to something using more than one "factor" to prove your identity. This can include things such as usernames/passwords, security apps, one time codes sent to a mobile device or email, and other "factors" to prove you are the right person associated with the account.
Jump to back to Sections List

Why do we need MFA?

The state community and Technical college system requires MFA for additional security to protect Personally Identifiable Information (PII) contained in ctcLink. Some colleges have already implemented MFA and employees and students already have MFA enabled on their accounts.
Jump to back to Sections List

How do I set up MFA?

The good news is MFA in ctcLink uses the information you already have stored in your ctcLink account. This means the setup process is fairly seamless.  If you have a mobile phone number already associated with your account, you will see the following options:

  1. Input your username & password:

  2. Click "Receive a code via SMS" to use the texting option on your mobile phone:

  3. Enter the code sent to your mobile device:

  4. If you prefer to use other "factors" like your email, security question or the app, you can click "Verify with something else" on the second screen.  You will see a screen similar to this:

If you need additional assistance with options on managing your MFA, read and follow the steps in this knowledge base article: Setting Up Your Multi-Factor Recovery Options

 

Will my personal device be subject to Public Records Requests if I use it for authentication?

No, these messages are transitory and serve no useful purpose after the one-time code expires. You are encouraged to delete these messages as soon as possible.

 

I am frequently signed out of ctcLink. How often will I have to enter MFA in order to sign in?

If you check the “keep me signed in” box (located in 1st screenshot above) when you sign in, your MFA code will be remembered for 16 hours. This setting needs to be checked for each device that you use. Once this is done, you should only have to enter MFA once each day (per device that you use throughout the day)

 

Jump to back to Sections List