Skip to content

With phishing emails, malicious attachments, and social engineering on the rise, a password alone no longer provides enough protection of your Clark Account.

To help mitigate the risk of a compromised account, Clark is enabling Multi-Factor Authentication (MFA) on our accounts. Once enrolled in MFA, your access to important Clark systems will be secured with both a password AND confirmation from a second factor, like a smartphone app, SMS message or security token. Initially this will protect access to your Clark email and other Microsoft applications, but will be expanded to other critical services over the coming months.

Step-by-Step Instructions: Click here for written step-by-step documentation on how to set-up MFA

How to Set-Up MFA

Before setting up MFA, make sure that:

  • You have continued access to an eligible Apple or Android  smartphone or a cell-phone that can receive SMS
    • If you are planning to use the Authenticator App (recommended), you will also need access to the app store and be willing/able to install an app.
    • If you’re in a position where you can’t use either the smartphone application, or SMS to authenticate your account, please contact the Help Desk to discuss other options.
  • If you are a staff or faculty member, you should be off-campus and not connected to VPN.

Step-by-Step Instructions: Click here for written step-by-step documentation on how to set-up MFA

Alternatively, if you’re planning to use the Authenticator App, watch a short (4 minute) step-by-step video on how to set-up.

a screenshot of a video on MFA to act as a link to the video

Frequently Asked Questions

What is Multi-Factor Authentication?

Click below to watch a short (3 minute) video about Multi-Factor Authentication.

Screenshot of a video embed for MFA

Multi-Factor Authentication (MFA), sometimes referred to as Two-Step Login, Two-Factor Authentication, or 2FA, is a security enhancement that requires you to present two (or more) pieces of evidence of who you are when logging in to an account. This evidence should fall into two (or more) of these three categories:

  • something you know: for example, a password or PIN
  • something you have: for example, an application on your phone or a bank card
  • something you are: for example, a fingerprint or retinal scan

In fact, you probably already use MFA in some form. For example, you’ve used MFA if you’ve:

  • swiped your bank card (something you have) at the ATM and then entered your PIN (something you know).
  • logged into a website, like Amazon, with a username and password (something you know) and was then sent a numeric code to your phone (something you have), which you entered to gain access to your account.

MFA helps to protect your personal data, identity and money. ITS recommends enabling MFA (or Two-Step Login) where available for any online services that you use regularly such as Google/GmailApple and others.

ITS is adding MFA security to important Clark applications over the coming months, but some of the most common applications currently covered by MFA include Clark email and Office 365.

During Spring 2021, all Clark community members were enrolled in MFA and all new users will need to use MFA immediately when activating their accounts.

Clark University (and FERPA guidelines) strongly recommends using the Microsoft Authenticator app as your factor. However we understand that may not always be possible.

If you would like to use SMS/Text Messages as your secondary factor, you can follow our Step-by-Step Instructions.

Please note that you should never share the 6 digit code with anyone, and only you should enter the code into a device. Convincing users to share their 6 digit code is the most common way that scammers obtain access to accounts after MFA is in place.

If you’re in a position where you can’t use either the smartphone application, or SMS to authenticate your account, please contact the Help Desk (helpdesk@clarku.edu) to discuss other options.

You may need to do this if you buy or sell your smartphone, change your phone number, or just want to manage your factors.

In most cases, you can continue using your preferred Mail or Calendar app on your smartphone. Many of the most popular email and calendar application, including those listed below, support MFA.

After setting-up MFA, you may need to remove and re-add your Clark account to your app in order for it to sync correctly.

iPhone Apps

  • Microsoft Outlook for iPhone
  • Apple Mail
    • iOS10 and earlier: not compatible*
    • iOS11 and more recent: compatible
  • Google GMail

Android Apps

  • Microsoft Outlook for Android
  • Google GMail

*If using an older version of Apple Mail, you may be able to update your iOS on your phone to use a more recent version that is compatible with MFA.

If your phone is unable to be updated, you will need to move to a supported app. Microsoft Outlook’s app will support MFA and will  connect to multiple accounts – including personal GMail accounts, etc.

 

After setting-up MFA, you may need to remove and re-add your Clark account to your app in order for it to sync correctly.

Your phone manufacture, or app developer should have instructions on how to do so, or you can contact the Help Desk if you need further assistance.

 

If you are a faculty or staff member, MFA is only required when connecting from off-campus. If you are teaching a class, running a meeting or need to access resources while on campus, you will not be required to authenticate with your second factor.

Students will be required to use MFA both on and off campus. If you forget your second factor, you can contact the Help Desk for further advice.

You will need to authenticate the first time you use a new device (computer, laptop, phone, tablet, etc.),  or browser to access protected systems.

After the initial authentication on a device, you may be asked to reauthenticate again in the future usually after a number of days/weeks. ITS will calibrate the timing of reauthentication requests to best balance security needs and your convenience.

When using MFA, your smartphone becomes an important step in gaining access to your account. If you lose your device, please reach out to the Help Desk at 508 793 7745 or helpdesk@clarku.edu so we can verify your identity and get you back into your account as quickly as possible.

Students that opted into MFA early were eligible to win a $50 gift card. There were two drawings – on Friday, March 12th and Friday, March 19th at noon. Congratulations to Nicha Tatsaneeyapan, and Penelope Kogan.