Cybersecurity

2-Factor Authentication

A step towards enhanced cyber security.

What is 2-Factor authentication?
Starting November 18, 2019, all Langara staff and faculty will be required to log-in using 2-factor authentication. 2-factor authentication minimizes the chance of your credentials being compromised by adding a second layer of security and protection during the log-in process.

How does it work?
2-factor authentication applies when logging into Microsoft O365, Brightspace, and Workday. You will be asked to verify your log-in every 24 hours, per device, per browser which means that you may need to do this more than once per day. Don’t worry, MFA is easy and convenient – download the Microsoft Authenticator App on your mobile device, or register for a token.

Why is it important?
We’re increasing our cyber security efforts. With security breach on the rise, Langara is taking the proper measurements to protect its employees. The goal of 2-factor authentication is to create a multilayered approach that makes it difficult for any unauthorized person to gain access to a system, network or database.

2-Factor Authentication is required for the following systems
	Microsoft Office 365 Starting Nov 18, 2019	LinkedIn Learning Starting Nov 18, 2019	Workday Starting Jan 6, 2020	Brightspace Starting Jan 2020
Web access	Yes	No	Yes	Yes
Desktop app	Yes	No	No	No
Mobile	Yes	Yes	Yes	No

How-To-Guides and Videos:

How to Prepare for 2FA on your phone

How to login using 2FA with a Token

What browsers are recommended?

Chrome
Edge
Safari

We do not recommend using Firefox as your primary browser as you may be required to authenticate more than once, every 24 hours.

How will this affect shared email accounts?

2FA will not affect your shared email accounts as it is only required for employee accounts such as Office 365, Workday and Brightspace.

Do I have to download the app on my phone?

Using your smartphone is recommended, but you do have the choice to register for a token.

How do I get a token?

Submit a request via Ask-IT or chat with a technician live at remotesupport.langara.ca.

How much data is it going to use?

100Kb – 200Kb per authentication.

Will the College pay for my phone?

Unfortunately, the College is unable to provide this benefit at this time.

How do I download the app?

Download the Microsoft Authenticator App from the Apple App Store or from Google Play.

The app says it’s gathering usage data, with no option to stop it.

Microsoft has turned on data gathering automatically, but this feature can be disabled in the settings. Once you have installed the app, go into the settings and turn off “usage data”.

The app is asking for me to give permission to access the camera. Should I?

Yes, give permission to the app to access your camera as it is required to enable the QR code scanner.

After scanning the QR code, I’m prompted to hit “next” on the computer, but I don’t see a “next” button.

Try zooming out to 90% in the browser. You can do this by pressing CTRL + - and the "next" button should appear.

My QR code disappeared while I was setting up my app – what do I do?

When setting up the app for the first time, the QR code remains valid for only about 30 seconds. If the code disappears or does not work, start the process again. If it still doesn't work, have your phone set to capture the QR code before clicking "Set up Authenticator App" in Step 2.

Did I set up the app correctly?

To verify that you set-up the Microsoft Authenticator correctly, follow the steps below:

Set up the app at https://aka.ms/proofup
Once set up, sign out and close the browser
Open a new browser and go back to https://aka.ms/proofup
If your app is correctly set up, you will be prompted to authenticate and see the following

My native mail app on my phone stopped sending and receiving emails.

We recommend that you switch to using Microsoft Outlook to access your employee email accounts. You can download the app on the App Store or Google Play.

What if I forget my phone at home?

Please submit a ticket via Ask-IT or chat with a technician live at remotesupport.langara.ca IT will provide a limited time exemption from having to 2FA for the day.

What if I lost my phone?

Please submit a ticket via Ask-IT or chat with a technician live at remotesupport.langara.ca.

What if I change phones?

You will need to download the Microsoft Authenticator App on your new smartphone. Follow the same How-To-Guide to set-up 2FA on your phone.

Do I need to activate the token?

No, there is no need to activiate the token.

What if I forget my token at home?

You can install the Microsoft Authenticator App on your mobile device and setup 2FA so that you can continue to access our systems. IT will be happy to help guide you through that process or you can follow the How-To-Guide. You can remove the app from your phone once you have your token.

If you can’t use the app, IT can give you a limited time exemption from needing to 2FA for that day. Please submit a ticket via Ask-IT or chat with a technician live at remotesupport.langara.ca.

What if I lose my token?

You are responsible for reporting the loss of a token to IT as soon as possible. The token will be disabled and a new one will be issued, the process to receive a new token may take several days.

In the interim, you can install the Microsoft Authenticator app on your mobile device and setup 2FA so that you can continue to access our systems. The IT Service Desk will be happy to help guide you through that process, or you can follow the How-To-Guide. You can remove the app from your phone once you have received your replacement token.

What if I forget my phone and token?

If you forget both your phone and token IT can provide a limited time exemption from needing to 2FA for the day. Please submit a ticket via Ask-IT or chat with a technician live at remotesupport.langara.ca.