Multi-Factor Authentication (MFA)

Summary (what you get)

Multi-factor Authentication (MFA) provides a layer of security by tying your credentials to your device, like sending verification codes to your smartphone. You will be prompted to verify your identity once MFA is activated for a particular application or web service. Once your identity has been verified, you will be granted access to the application or web service.

Services Include

In an effort to strike a balance between reducing our institutional risk of a cybersecurity breach while not being overly intrusive in the ability to access HWS applications and services used on a daily basis, the MFA capability will allow for what is called “trusted devices.” A trusted device specifically applies to the combination of the browser on your computer or mobile device (phone, tablet, etc) and the device itself. Once you have signed into a service using multi-factor authentication, the system remembers your browser and device. For a period of 30 days, you will not have to go through the additional verification step when using that same browser and device to access any MFA enabled application or web service.

When you receive it

Multi-factor authentication is automatically available for many HWS services and applications. Once MFA is activated for a particular application or web service, you will be prompted to provide additional credentials to verify your identity. Once your identity has been verified you will be granted access to the application or web service. In addition, the device from which you have authenticated will also become a trusted device.

In order to use the MFA capabilities, you must have already logged into the system that allows you to manage your HWS credentials: myaccount.hws.edu. In addition to enabling MFA, this system also allows you to reset your own password should you forget it.

When you log into the system for the first time, you will need to update the following information:

  • Knowledge Based Questions – these are security questions that help the system confirm your identity if you've forgotten your password and need to reset it.
  • Recovery E-mail - this is an e-mail address, other than your HWS e-mail, that provides an alternate method for the system to confirm your identity.

If you've provided a mobile phone number in PeopleSoft, the system will automatically populate it, which is an additional way to confirm your identity. If you don't know how to update your PeopleSoft information, please see instructions on the HWS Human Resources site.

Go to https://myaccount.hws.edu to manage your HWS credentials, enable MFA, and change your password if you forget it.

Authentication Options

  • Call or text your phone: If you have provided your phone number in PeopleSoft, you will have this option. For instructions on changing information in PeopleSoft, go to the Human Resources page on hws.edu.
  • Recovery E-mail: You can enter an alternate email address by going to myaccount.hws.edu. Use a personal email account.
  • Knowledge-based questions: These are security questions (your first pet's name, favorite teacher's name, etc.) which you can manage at myaccount.hws.edu.
  • One-touch authorization through mobile application on phone or smart devices
 
Multi-Factor Authentication Support

Related Articles (4)

Directions on how to install the MFA one-touch authorization app on iOS and android devices for quicker MFA when logging into HWS systems.
Using MFA One-touch authorization on android mobile devices
Using MFA One-touch authorization on iOS mobile devices
Set up an account with password services and reset your password