Strong passwords, even those with significant number of characters and complexity, don’t provide sufficient protection. Educational institutions have become major targets for attackers, and Drake has to upgrade our protections around individual and campus data.
Because of this, Drake requires the use of the multi-factor authentication (MFA) to access campus systems. See below for guidance on steps for getting started, and FAQs.
What is multi-factor authentication (MFA)?
Multi-factor authentication (MFA) is an added security layer for your online identity. It helps ensure that you are the only person who can access your account if your password is compromised. With MFA, you log into campus systems using your Drake email address and password and then confirm your identity using your chosen verification device. Your information is safer because thieves would need your password AND your phone or other verification method to access your account. There are two main options for multi-factor authentication, either using the Microsoft Authenticator app with a push notification or receiving a call or a text from Microsoft.
How do I get started?
You have several options to use for multi-factor authentication:
- Using the Microsoft Authenticator app on your smart phone (available for both iOS and Android phones)
- Receiving a text message to a cell phone
- Answering a call on your cell phone, office phone (faculty and staff only), or other phone number
Where can I get instructions on how to set up multi-factor authentication?
ITS has created documentation on setting up multi-factor authentication. Please see the resources linked below:
NOTE: No matter what method you choose, ITS strongly recommends setting up more than one method for authentication. If you only configure a single factor, you won't be able to validate your own legitimate access to your account if you lose access to your single primary factor! Because MFA verification is required to modify your MFA enrollment, you will be unable to fix your access yourself. See instructions and options at Setting up Additional MFA Options or Changing your Default Option (How-to).
What if I need help?
If you get stuck and need to clear your settings, you can follow the instructions at Clearing your Multi-Factor Authentication Settings (How-to). Need more help? Contact the IT Support Center at 515-271-3001.
How often do I have to use multi-factor authentication? And on which applications?
How often you need to use multi-factor authentication (MFA) will vary by application.
You will be prompted for MFA weekly when accessing:
- Web-based versions of Microsoft Office 365 (includes myDrake, Outlook, Teams, OneDrive, etc.)
- Blackboard
- StarFish
You will be prompted for MFA daily when accessing:
- Banner Admin pages
- eAccounts
- Raiser's Edge
- Self Service
- Slate
- Touchnet
NOTE: The frequencies listed for the above applications apply to the same device/browser session. Switching to a new device, closing your browser, or signing out will require you to re-authenticate. This provides an additional level of security in the case of your device being stolen or any unlawful access to your account.
What if I lose my phone or get a new one?
See Clearing your Multi-Factor Authentication Settings (How-to) for instructions on clearing your registered methods and re-registering new ones if you get a new device or lose your phone. If you have a back up method enabled, you may be able to follow the directions at Setting up Additional MFA Options or Changing your Default Option (How-to).
What if I don't have a smart phone?
See instructions in Getting Started Using Text Messages or Phone Calls for Multi-Factor Authentication (How-to) for how to receive phone calls to authenticate your identity.
What if I don't have Internet access? Or I'm traveling?
Once you've set up the Microsoft Authenticator App, you can use one-time codes from the app, even when you aren't connected. Learn more at Using MFA Without Cellular Service or While Traveling (How-to).