About Okta MFA

Cyber attacks are becoming increasingly prevalent in today’s technology landscape. Passwords and usernames are often hacked and then used to log into other online accounts. Multi-factor authentication (MFA) will significantly increase your UQ account’s security and protect it from compromise.

If a hacker gets access to your UQ account, they could potentially obtain access to sensitive University data, or your personal information. Consequent data breaches can have severe personal, business and financial implications.

Mobile devices are the preferred and usually most convenient way to use MFA.

You will need to install the Okta Verify app from Google Play (Android) or the App Store (iOS).

There is no cost associated with using Okta Verify, however you will need to have network connection to complete the MFA activity.

If you don’t have a network connection, follow the FAQ instructions for how to ‘MFA in a location without mobile coverage’.

If you would like a Quick Reference Guide, click here.

MFA is required when accessing UQ websites and services that use UQ Authenticate.

The frequency will differ depending on whether you are using a UQ-managed device or a personal (unmanaged) device for your desktop or laptop to access UQ systems.

If you are using an assigned, UQ-managed desktop or laptop:

Once you have been registered for Okta, you will only require an initial login using your computer’s local security method (e.g. passcode, fingerprint or face ID), per session.

However, under the Pilot, certain applications like VPN will continue to use Duo as an Identity Provider and Multifactor Provider. For more information, please refer to the FAQ under Setting Up MFA section: Why am I receiving prompts for Duo when using remote access VPN?

If you are using a personal desktop or laptop:

In most cases, you will need to MFA daily, when accessing UQ systems.

Always carry your authenticator (i.e. smartphone with app) when accessing UQ websites and services.

Our goal is to connect all UQ websites and systems to multi-factor authentication (MFA), to enhance the security at UQ. As we continue to implement these new security measures, you will see more sites connect to MFA.

If you are accessing UQ systems and cannot get mobile coverage for MFA, please contact the IAM Project team, and they will provide you with access to the below workaround method.

When logging into Okta:

1. Enter your username.
2. When prompted for MFA click the “Verify with something else” link.
3. Click the “Okta Verify Enter a code” button.
4. Open the Okta Verify app on your phone.
5. Click the  icon in the Okta Verify app, making note of the 6-digit code.
6. Enter the 6-digit code in your web browser.

If you would like a Quick Reference Guide, click here.

Okta Verify neither stores nor accesses personal data on your MFA-registered device.

Okta Verify push authentication requests require a minimal amount of mobile data that falls well within a typical push notification.