MFA Multi-device Registration

OVERVIEW

This page is designed to recommend practices for multi-device registration with SFU MFA.

Multi-device registration refers to registering more than one device for MFA with your SFU account, and all the devices registered will display the same six-digit MFA code, or TOTP (Time-based One-Time Password).

DETAILS

Multi-Device Registration is not intended to be used as backup devices.

For optimal security, we recommend only registering one device with MFA per SFU computing account. We encourage all users to use the MFA emergency codes as their backup resource.

To view your MFA emergency codes or generate new codes, sign into the SFU MFA Management App to retrieve your emergency codes before you come across a scenario where you may need them.

What happens if I register multiple devices for MFA with my SFU account?

Your account will be exposed to higher security risks than the accounts that are registered with just one device.

Multi-device registration for MFA with your SFU account means that the same six-digit MFA code, or TOTP (Time-based One-Time Password) is shown across multiple devices. The more devices registered to your account, the more chances there are for one of those devices getting compromised (e.g. theft).

Who should use multi-device registration?	Who should not use multi-device registration?
Individuals who are in a position that require multi-device registration can add additional devices on the SFU MFA Management App. Some examples where you may require multiple devices could be: Entering a place or area where you cannot continually bring in your personal belongings (i.e., sanitized or clean labs). Entering a place or area where you cannot continually take out personal belongings once you enter (i.e., biohazardous or containment labs). For instructions to add additional devices, see Add or Remove MFA Devices and Apps.	Individuals who are in a position where one MFA device is sufficient for your work are recommended to not add additional MFA devices. Some examples where you should not use multiple devices for MFA could be: For convenience reasons (i.e., remote work, multiple work stations). To have additional backup devices. We encourage all users to use the MFA emergency codes as their backup resource.

Who should use multi-device registration?

Who should not use multi-device registration?

Individuals who are in a position that require multi-device registration can add additional devices on the SFU MFA Management App.

Some examples where you may require multiple devices could be:

Entering a place or area where you cannot continually bring in your personal belongings (i.e., sanitized or clean labs).
Entering a place or area where you cannot continually take out personal belongings once you enter (i.e., biohazardous or containment labs).

For instructions to add additional devices, see Add or Remove MFA Devices and Apps.

Individuals who are in a position where one MFA device is sufficient for your work are recommended to not add additional MFA devices.

Some examples where you should not use multiple devices for MFA could be:

For convenience reasons (i.e., remote work, multiple work stations).
To have additional backup devices.

We encourage all users to use the MFA emergency codes as their backup resource.

0 reviews

Details

Article ID: 4932

Created

Wed 2/1/23 3:51 PM

Modified

Wed 2/1/23 3:57 PM

Updating...