Authentication - How to Register Okta Verify as a Multi-Factor Authentication (MFA) Credential for Your Account

Tags how-to public

Objective

Following these steps will connect Okta Verify as a MFA credential to your account, allowing you to connect to resources that require MFA.

Environment

iOS
Android
Production

Before You Begin

These instructions presume that you have not attempted to log in to a service that requires MFA and were then prompted by that service to register a credential (EBS, for example). If you were prompted to Set up security methods, select Set up under Okta Verify, and then jump to step 7 in the list below and follow the instructions from there.

These instructions are meant for the Production environment (which is the default for publicly accessible resources). See the Additional Info section at the bottom of this article for information about the Qual and Test environments.

Steps

  1. Navigate to auth.msu.edu (link)
  2. Log in with your MSU NetID and password.
  3. Select your name from the top-right corner of the screen and choose Settings from the drop-down menu that appears
  4. Select the Set up button next to Okta Verify in the Security Methods section of the page
  5. Enter your MSU NetID password and select Verify
  6. Select Set up
  7. A Set up Okta Verify screen should appear, with a QR code and instructions to download and install the Okta Verify app on your iPhone or Android device
  8. On your phone:
    1. Download the Okta Verify mobile application from either the Google Play Store or Apple App Store.
    2. After downloading the Okta Verify app, open it and follow the prompts.
    3. Toward the end of the install it will have a prompt for you to select Add Account
    4. Then choose Organization for the account type
    5. Verify the QR code is still onscreen on your computer, then select Yes, Ready to Scan
    6. Center the QR code in the finder window on your phone to scan it
    7. We recommend allowing push notifications, if you are prompted to enable them. Select Allow and then choose Allow when it prompts if it can send you notifications.
    8. Some devices may allow use of Face ID, which you may enable or not based on your preference
  9. You're done! Okta Verify should now be connected as a MFA credential for your account and you can now log in to resources that require MFA.

Additional Info

It is also possible to register a phone number to receive MFA codes via SMS or voice call, or to register a biometric device to act as a MFA credential. Simply choose Set up next to either option and then follow the prompts.

Okta Verify App Help Pages (from help.okta.com)

Instructions to Change App Notification Settings

Non Production Environments

MFA is also used in the Test and Qual environments. Credentials are added the same way as above, which is for Production, with the following changes:

Print Article

Related Articles (5)

Following these steps will connect a security key or biometic authenticator as a MFA credential to your account, allowing you to connect to resources that require MFA.
Following these steps will connect your phone (using SMS or voice calls) as a MFA credential to your account, allowing you to connect to resources that require MFA.
Following these steps will switch your Okta Verify MFA credential from one phone to a new one.
MFA stands for "Multi-Factor Authentication". For authentication, a factor is a way to confirm you are an authorized user. In the past, most authentication was done solely with a username and password. The password was the factor being used.
The F5 Campus VPN is integrated with MSU's Unified Login (Okta), requires multi-factor Authentication (MFA), and also requires having anti-virus software installed.

Related Services / Offerings (2)

Stronger authentication method for key technology systems currently using MSU’s single-sign on system, to reduce the risk of a compromise, especially with high value systems such as those that process or store sensitive and restricted information.