Q: Who is affected by this requirement to set up multifactor authentication?
A: All deposited incoming students, current students, and employees are required to use multifactor authentication with their GC account. As well as GC retirees who are still signing into their GC account.
Q: I am an incoming student. When will I be required to use multifactor authentication?
A: Once we receive and process your deposit, you will be required to set up and use multifactor authentication when signing into your GC account.
Q: Why is GC required to do this?
A: Mandates from the Department of Education, the Gramm-Leach-Bliley Act, and our insurance carrier for cybersecurity and ransomware insurance are mandating that we extend the use of multifactor authentication to all individuals who have a Goshen College account. Email phishing is one of the top social engineering threats that people face. Cybercriminals are successful at convincing people to enter usernames and passwords on illegitimate sites, thereby giving away their login credentials. Multifactor Authentication helps make sure that even if your username and password is compromised, an attacker will encounter the MFA barriers, preventing them from accessing institutional data and systems.
Q: What services will this affect?
A: You will encounter multifactor authentication when you sign into your GC Google account, GC Online, MyGC, Moodle, Salesforce, Zoom, and any other GC service that uses your GC username and password.
Q: I’m an employee and I use Remote Desktop to remote to my Goshen College computer. Which MFA will I use when remoting to my computer?
A: If you use Remote Desktop to remotely access your GC computer, for the time being you will continue to use Duo authentication when remoting to your computer. When the time comes to start using Okta when remotely accessing your GC computer, an announcement will be made.
Q: Is this optional?
A: No. Everyone will be required to use multifactor authentication when signing in to their GC account or any GC service that uses their GC username and password.
Q: How will I provide multi-factor authentication?
A: You have the choice to use either the Okta Verify app or the Google Authenticator app for multifactor authentication on your cell phone/iPad/tablet. And you may set this up on more than one device. The process adds a second layer of security and keeps your account secure even if your password is compromised. It does this by using something that you know, for example your password, along with something that you have, such as your mobile device. When you log in, you will be prompted to approve the login with your mobile device. If someone is attempting to log in as you, you will be able to deny the login with the multifactor authentication app that you install on your phone/device. This additional form of authentication is completely independent from your username and password. In other words, neither Okta Verify or Google Authenticator ever sees your username or password.
Q: What if I don’t have a smartphone?
A: If you do not have a cell phone that allows you to install applications on it, you may set up multifactor authentication on any other mobile device that you have, such as an iPad or tablet. Or, you may have either text SMS messages sent to your cell phone, or receive a phone call to get the authentication code for logging in. Instructions for setting up SMS text messages or phone calls can be found at: https://www.goshen.edu/its/okta-phone-sms-setup
Q: What if I don’t want to use my cell phone for multifactor authentication?
A: If you choose to not use your cell phone, you may set up multifactor authentication on any other mobile device that you have, such as an iPad or tablet. You may also contact the Help Desk at (574) 535-7700 for assistance with other multifactor authentication options.
Q: What if I don’t have my phone/device with me when I try to sign in?
A: Unfortunately, we will not have a way to allow you to sign into your GC account if you don’t have your phone or other device with you at the time of logging in.
Q: Will GC reimburse me for the use of my cell phone?
A: No, Goshen College is not providing a mobile phone reimbursement plan for those who use their cell phone for authentication purposes.
Q: What if I lose my cell phone or device that I use for multifactor authentication?
A: If you lose the phone/device that you use for multifactor authentication, you will need to contact the Help Desk so that they can reset your authentication methods and help you set up a new way of authenticating. Contact the Help Desk at (574) 535-7700.
Q: What if I get a new cell phone or new device that I want to use for multifactor authentication?
A: If you get a new phone/device, you will need to contact the Help Desk so that they can reset your authentication methods and help you set up your new phone/device. Contact the Help Desk at (574) 535-7700.
Q: I got a new cell phone/tablet and don’t have access to my previous device. Can I set up MFA on my new device without getting assistance from the Help Desk?
A: Unfortunately, no. You will need to contact the Help Desk so that they can reset your authentication methods and help you set up your new phone/device. Contact the Help Desk at (574) 535-7700.
Q: I had to reset/wipe my phone/device. Can I set up MFA on my device without assistance from the Help Desk?
A: If after resetting/wiping your device you are unable to set up MFA on it again, you will need to contact the Help Desk at (574) 535-7700 for assistance.
Q: Does this only affect me when I’m signing into my GC account while on campus?
A: Regardless of where you are when you are signing into your GC account, you will need to provide multifactor authentication to get signed in.
Q: Do I have to use multifactor authentication every time I log in?
A: No. There will be a “Keep me signed in” option that you can select while going through the sign in process. When the “Keep me signed in” box is checked, you will not be prompted for multifactor authentication again for 10 hours as long as you are logging in on the same computer, device, and browser. If you need to use another computer, device, or browser to log in, you will need to provide the multifactor authentication on that other computer/device/browser.
Q: What if I already have Google Authenticator set up for multifactor authentication to other services/accounts?
A: If you are already using the Google Authenticator app to provide multifactor authentication for other services/accounts, you can also use it for your GC account. You will need to follow the setup steps to enable the use of Google Authenticator on your GC account.
Q: Can I use more than one device for multifactor authentication?
A: Yes, you can have multiple devices set up for your multifactor authentication. iPads or other tablets make good secondary devices.
Q: How do I set up a secondary device for multifactor authentication?
A: During initial setup you can register multiple devices. You can also add additional devices at any time by accessing the Okta Dashboard at https://login.goshen.edu, click on your name, go into Settings, and then in the Security Methods section, click on the Set up button for the method that you want to add, and follow the prompts.
Q: What is the Okta Dashboard?
A: The Okta Dashboard is part of the Okta multifactor authentication service that Goshen College uses. The Okta Dashboard gives you quick access to the various applications and cloud services that are offered at Goshen College. It is also where you will make changes to the authentication methods that you use with Okta. Go here for more information.
Q: Will I receive the MFA notifications if I have my cell phone on Do Not Disturb?
A: Push notifications may not come through to your cell phone if you have Do Not Disturb enabled on your cell phone.
Need Additional Help?
Contact us at (574) 535-7700 to make an appointment to receive assistance. Or, send an email to helpdesk@goshen.edu.