What is Multi-Factor Authentication?

Click below to watch a short (3 minute) video about Multi-Factor Authentication.

Multi-Factor Authentication (MFA), sometimes referred to as Two-Step Login, Two-Factor Authentication, or 2FA, is a security enhancement that requires you to present two (or more) pieces of evidence of who you are when logging in to an account. This evidence should fall into two (or more) of these three categories:

• something you know: for example, a password or PIN
• something you have: for example, an application on your phone or a bank card
• something you are: for example, a fingerprint or retinal scan

In fact, you probably already use MFA in some form. For example, you’ve used MFA if you’ve:

• swiped your bank card (something you have) at the ATM and then entered your PIN (something you know).
• logged into a website, like Amazon, with a username and password (something you know) and was then sent a numeric code to your phone (something you have), which you entered to gain access to your account.

MFA helps to protect your personal data, identity and money. ITS recommends enabling MFA (or Two-Step Login) where available for any online services that you use regularly such as Google/Gmail,  Apple and others.

ITS is adding MFA security to important Clark applications over the coming months, but some of the most common applications currently covered by MFA include Clark email and Office 365.

During Spring 2021, all Clark community members were enrolled in MFA and all new users will need to use MFA immediately when activating their accounts.

Clark University (and FERPA guidelines) strongly recommends using the Microsoft Authenticator app as your factor. However we understand that may not always be possible.

If you would like to use SMS/Text Messages as your secondary factor, you can follow our Step-by-Step Instructions.

Please note that you should never share the 6 digit code with anyone, and only you should enter the code into a device. Convincing users to share their 6 digit code is the most common way that scammers obtain access to accounts after MFA is in place.

If you’re in a position where you can’t use either the smartphone application, or SMS to authenticate your account, please contact the Help Desk (helpdesk@clarku.edu) to discuss other options.

You may need to do this if you buy or sell your smartphone, change your phone number, or just want to manage your factors.

• Click here to update, add or delete any of your factors.
• Click here for more information about how to update your factors.

In most cases, you can continue using your preferred Mail or Calendar app on your smartphone. Many of the most popular email and calendar application, including those listed below, support MFA.

After setting-up MFA, you may need to remove and re-add your Clark account to your app in order for it to sync correctly.

iPhone Apps

• Microsoft Outlook for iPhone
• Apple Mail
  • iOS10 and earlier: not compatible*
  • iOS11 and more recent: compatible
• Google GMail

Android Apps

• Microsoft Outlook for Android
• Google GMail

*If using an older version of Apple Mail, you may be able to update your iOS on your phone to use a more recent version that is compatible with MFA.

If your phone is unable to be updated, you will need to move to a supported app. Microsoft Outlook’s app will support MFA and will  connect to multiple accounts – including personal GMail accounts, etc.

After setting-up MFA, you may need to remove and re-add your Clark account to your app in order for it to sync correctly.

Your phone manufacture, or app developer should have instructions on how to do so, or you can contact the Help Desk if you need further assistance.

If you are a faculty or staff member, MFA is only required when connecting from off-campus. If you are teaching a class, running a meeting or need to access resources while on campus, you will not be required to authenticate with your second factor.

Students will be required to use MFA both on and off campus. If you forget your second factor, you can contact the Help Desk for further advice.

You will need to authenticate the first time you use a new device (computer, laptop, phone, tablet, etc.),  or browser to access protected systems.

After the initial authentication on a device, you may be asked to reauthenticate again in the future usually after a number of days/weeks. ITS will calibrate the timing of reauthentication requests to best balance security needs and your convenience.

When using MFA, your smartphone becomes an important step in gaining access to your account. If you lose your device, please reach out to the Help Desk at 508 793 7745 or helpdesk@clarku.edu so we can verify your identity and get you back into your account as quickly as possible.

Students that opted into MFA early were eligible to win a $50 gift card. There were two drawings – on Friday, March 12th and Friday, March 19th at noon. Congratulations to Nicha Tatsaneeyapan, and Penelope Kogan.