Using a Physical Device for MFA (MFA Token)

Owned by Tori Moffat (Deactivated)
Last updated: Dec 12, 2024 by Eric Eason
2 min read

How to Request an MFA Token in Place of a Personal Phone

When using Multi-Factor Authentication (MFA), users are required to use a secondary method to verify their identity. If a user does not wish to use their personal phone, they can request a MFA token through submitting a ticket to the ITS Service Desk.

A MFA token is the size of a USB stick and will generate a 6 digit security code whenever the user needs to verify their identity for MFA. Tokens can be mailed or picked up on campus after they are requested.

Privacy Concerns

If privacy or separation of work and personal accounts is the reason for not wanting to use a personal phone for MFA, the registration process that uses the QR code does not sign in your phone to Seattle University or provide any access or monitoring to the phone. The Microsoft Authenticator app will note the model of phone and version number of the app in your account, to better manage the authentication methods. If using a non-Microsoft authentication app, only a unique identifier is recorded.

image-20241212-184957.png

Other Methods for Verifying Your Identity

Other options for secondary devices include:

  • Texts or calls to your cell phone number

  • A call to your office phone number

  • Using the Microsoft Authenticator App on your cell phone

ITS recommends using the Microsoft Authenticator App since it can be used internationally and it creates a positive user experience. While it does require a smart phone, the phone does not require network or cell phone service to use the app once installed.