How MFA Works
Multi-factor authentication (MFA) provides your password protected, online accounts at Fordham with an additional layer of security. Verifying your identity using MFA reduces the risks associated with unauthorized access to your accounts, should your passwords ever be compromised. Fordham's MFA service is provided by Duo Security, a trusted company used by many higher education institutions.
All active online accounts are required to enroll in MFA. You will be asked to enroll in MFA via an email sent from Duo Security or when you first encounter an MFA-enabled application through a browser. You are strongly urged to enroll multiple devices. If you need assistance with any aspect of MFA, please contact IT Customer Care.
- To log into a Fordham system, enter your AccessIT ID and password, as usual.
- If you login to My.Fordham or other Fordham system, use your phone or tablet to verify your identity when prompted by Duo.
- Securely complete the login process.
You may opt to have your authentication remembered for 30 days, if you are using the same browser on the same device.
Devices for Verifying Your Identity
A smartphone, landline, tablet, or in some situations, a hardware token, may be used to verify your identity for MFA. You can set up multiple devices for authenticating, such as your mobile phone and a landline, two different mobile devices, or a landline and a hardware token when traveling.
Multiple Ways to Verify Your Identity
Push notifications to smartphones
With the Duo MFA mobile app, Duo Mobile, you receive a push notification in response to an authentication request that you approve or deny.
An SMS text message is sent to your registered mobile device. Enter the passcode when you receive the multi-factor prompt during the login process.
Similar to SMS, the Duo MFA mobile app, Duo Mobile, generates a new, unique passcode to enter when you receive the multi-factor prompt.
Your registered phone number is called. Answer the phone and press any key to be granted access to your account.
The hardware token is a small device you carry. Pressing a button on the token generates a new passcode that you type into the multi-factor prompt. To request a hardware token, call IT Customer Care or use the Tech Help tab at My.Fordham (if it's your first time using the tab, make sure your browser can allow pop-ups for this page.) All requests for hardware token must be approved by the Associate Vice President of Fordham University's Information Security Office. A $20 fee will be charged for lost tokens. For more details, consult the Hardware Token User Guide.
Devices Supporting MFA
- Smartphones, including Android, iPhone, and Windows phones
- Cell phones
- Hardware tokens