MFA FAQ
Why is Shady Side Academy introducing Multi-Factor Authentication?
Due to a dramatic rise in cybercrime, and with cyber criminals increasingly targeting the education sector, cyber security insurance companies are requiring schools worldwide to implement more strict policies and procedures. Topping the list of mandates, is that schools improve security on user authentication (how you login) to gain access to devices and information. Multi-factor authentication provides an additional identity check on your login. The additional check will make it nearly impossible for a hacker to compromise your account.
When will Shady Side Academy begin requiring MFA?
Shady Side Academy will begin requiring adult users to provide Multi-Factor Authentication (MFA) to access Academy resources on August 22, 2022.
Is there a difference between the Google Authenticator App and the Microsoft Authenticator App?
Technically, both of these Authenticator Apps do the same thing, and either can be configured to handle the multi-factor portion of your logins. However, with the other security changes that SSA is planning to implement, the Microsoft Authenticator App will provide a more seamless experience for users.
Is this different than what we’re already doing with the Google Authenticator App to access Veracross?
Yes, this new MFA requirement is IN ADDITION TO what you’re already doing for Veracross. Veracross began requiring multi-factor authentication earlier in 2022. At that time, the SSA IT Dept embraced the Google Authenticator App as the smartphone app of choice to meet Veracross’ security requirements. Now, SSA will be requiring multi-factor authentication for other systems, such as your email, Google Drive, and even simply logging into your computer. The SSA IT Dept has changed its position on which authenticator app is preferred. Either Microsoft’s or Google’s Authenticator App will work, but the Microsoft Authenticator App is preferred for managing the multiple MFA accounts across our systems.
If I already use the Google Authenticator App and have been using it to login to Veracross, should I delete it and start over?
The SSA IT Dept is recommending that users abandon the Google Authenticator App in favor of the Microsoft Authenticator App. Users will need to download the Microsoft Authenticator App and follow the steps at the end of this document to register the app to your Microsoft account. This is not a requirement, but we recommend that users leverage the Microsoft Authenticator app for ALL MFA functions.
So now am I going to use two separate apps to first login to my computer and then the second to login to Veracross?
No. We recommend that all users abandon the Google Authenticator app and move forward with only the Microsoft Authenticator app.
I’ve had situations when I need to login to Veracross but I didn’t have my phone in the classroom with me, so I was stuck. Will that now be the case as I move around the building to teach in terms of logging in when I open my computer?
Yes, for both Veracross and our overall systems, as we build securities that meet these requirements. Users will only be required to meet multi-factor authentication on reboot, not on unlock / wake-from-sleep.
Will it allow the “remember me for 7 days” like the MFA on the Veracross does?
We have configured Microsoft MFA to remember you for 14 days on web-based things such as web-Outlook and Google Drive. However, once MFA is enforced it will be required at each computer login or after reboot.
For those of us without a smart phone, is it possible to setup a different check like a code sent to an email address or security questions?
Yes. We are exploring options for how best to handle this. If you require a temporary exemption from MFA, please email [email protected] with that request.
HOW TO SWITCH FROM GOOGLE AUTHENTICTOR TO MICROSOFT AUTHENTICATOR FOR VERACROSS AND SSA SYSTEMS
Setup the Microsoft Authenticator App with your SSA User Account (email)
- Download the Microsoft Authenticator App from your phone’s app store
Apple: https://apps.apple.com/us/app/microsoft-authenticator/id983156458
Android: https://play.google.com/store/apps/details?id=com.azure.authenticator
- From a computer, visit myaccount.microsoft.com and sign in with your Shady Side Academy account. You may need to sign out of any personal Microsoft or Hotmail accounts.
- Under Security Info, select Update Info
- Select Add sign-in method
- From the drop-down menu in the pop-up, select Authenticator App, click ADD
- Select Next
- Follow the on-screen instructions and add your SSA Microsoft account to Microsoft’s Authenticator
- After verifying the MFA connection, change the default MFA Sign-in Method to “Microsoft Authenticator – Notification”
Click Set Default Sign-In Method, or Change Your Current Default Sign-in Method
If you’d like to move your current Veracross MFA to the Microsoft Authenticator App, follow the instruction in this helpdesk article below.
Setup or Reset Veracross Account for MFA using the Microsoft Authenticator App
https://helpdesk.shadysideacademy.org/kb/article/48-resetting-mfa-2-factor-authentication-in-vc/