Multi-Factor Authentication (MFA) also known as two factor, or second factor authentication is provided as additional level of security to meet NYU policies. To better understand authentication individuals can think of passwords as something they know and MFA is something they have with them.
NYU IT has contracted with vendor to provide following methods to provide a passcode for MFA:
- Duo Mobile – applications for Google Android and Apple iPhone/iPad devices, primary and best way of obtaining passcode through push notification. Additionally application can be used offline or while airplane mode to obtain passcode.
- Hardware Tokens – as alternative for those who travel frequently or work in remote areas of world.
- Phone Call & SMS – much less secure and cost University, these are not recommended and available by exemption only.
Alternative hardware devices as OPT and U2F (ie. YubiKey) can be obtained by individuals themselves and registered with NYU MFA system.
- U2F: There are hundreds of U2F hardware tokens registered in NYU MFA. User may self register the hardware tokens (ie. YubiKey) as U2F token using Start Page. U2F is only supported by Chrome and Opera browsers at this time.
- OPT: At this time no YubiKeys have been registered and used in OTP mode in NYU MFA system and there is no procedure in place to register them as such device.