Multi-Factor Authentication (MFA)
What is MFA? MFA is a layered approach to securing physical and logical access where a system requires a user to present a combination of two or more different authenticators to verify a user’s identity for login. MFA increases security because even if one authenticator becomes compromised, unauthorized users will be unable to meet the second authentication requirement and will not be able to access the targeted computer system. Multi-factor authentication enhances the security of your account by requiring you to provide two or more verification factors before gaining access. This extra layer of protection significantly reduces the risk of unauthorized access and safeguards confidential information.
Why MFA? The education sector as a whole is cyber attacked daily. It only takes one compromised user account to make the district a victim of ransomware or cause a breach of private data. Implementing MFA makes it more difficult for a threat actor to gain access to information systems, such as remote access technology, email, student information, and financial systems, even if passwords or PINs are compromised through phishing attacks or other means. Adversaries are increasingly capable of guessing or harvesting passwords to gain illicit access. Password cracking techniques are becoming more sophisticated and high-powered computing is increasingly affordable. In addition, adversaries harvest credentials through phishing emails or by identifying passwords reused from other systems. MFA adds a strong protection against account takeover by greatly increasing the level of difficulty for adversaries.
How does MFA work? MFA requires users to present two or more authentication factors at login to verify their identity before they are granted access. Each additional authentication factor added to the login process increases security.
A typical MFA login would require the user to present some combination of the following:
- Something you know: like a password
- Something you have: like a cellphone or land line telephone
- Something you are: like a fingerprint, face scan, palm print, or voice recognition
For example, MFA could require users to insert a debit card into a card reader (first factor) and then enter a PIN (second factor). An unauthorized user in possession of the card would not be able to log in without also knowing the pin; likewise, the pin is useless without physical access to the card.
Learn More about MFA
Steps to set up MFA
Step 1. On your mobile phone, download and install the Microsoft Authenticator app.
- Search for the app in the Google Play Store or Apple App Store.
- Use the button or QR code below from your mobile device to get the app.
On an Android device, click the button below or scan the QR code from your cellphone.
On an iOS device, click the button below or scan the QR code from your iPhone.
Step 2: Setup the Authenticator App
- Select (+) in the upper right corner of the app
- Add your HISD Microsoft Account
Step 3: Add MFA to your Huffman ISD Microsoft Account
Option 1:
- Click here to take you right to MFA setup: http://aka.ms/mfasetup
- Sign in with your Huffman ISD email address and password.
- Add a default sign-in method (Microsoft Authenticator)
- Scan the QR code with your app.
- Add additional sign in methods, such as your mobile phone (call or text), or office phone (call only)
Option 2:
- Sign into: https://myaccount.microsoft.com
- Under Security Info, click on UPDATE INFO
- Add a default sign-in method (Microsoft Authenticator)
- Scan the QR code with your app.
- Add additional sign in methods, such as your mobile phone (call or text), or office phone (call only)
FAQs about MFA
- What does the app do? What information does it collect?
- Do I have to use my personal cellphone?
- What if my device is lost?
- How often do I have to authenticate?
- What if I forget my cellphone for work that day?
- Can I delete the mobile app once I get setup?
- Do I have to authenticate through MFA separately for each browser or device?
- Where do I modify my MFA authentication settings?
- What if I need to change my phone number?
What does the app do? What information does it collect?
Do I have to use my personal cellphone?
What if my device is lost?
How often do I have to authenticate?
What if I forget my cellphone for work that day?
Can I delete the mobile app once I get setup?
Do I have to authenticate through MFA separately for each browser or device?
Where do I modify my MFA authentication settings?
What if I need to change my phone number?
Thanks for Keeping our District Secure!
Have questions not answered by the FAQ? Encountering difficulties setting up your MFA method? Contact Technology Services - we're happy to assist.