Setup Multi-Factor Authentication with Google Authenticator
With Multi-Factor Authentication (also known as MFA or 2-Step Verification), you add an extra layer of security to your account.
After you set it up, you’ll sign in to your account in two steps using:
- Something you know (your password)
- Something you have (like your phone)
To setup Multi-Factor Authentication (MFA) within Okta, follow these simple steps.
- On your computer, navigate to a website or service that requires Multi-Factor Authentication (MFA), such as https://checkmyokta.com/.
- Enter your username and password. Click the Sign In button.
- When presented with a prompt to set up Multi-Factor Authentication (MFA), click "Setup" under the SMS Authentication option first. This is helpful if you lose, break, or replace your phone.
- Type in a phone number where you can receive SMS messages (text messages) and click "Send code".
- Check your mobile device. Enter the 6-digit code that was texted to you and click "Verify".
- You're almost done! Click "Setup" under the Google Authenticator option.
- If you will be using an iPhone as your secondary device to help you get logged in, select iPhone. Otherwise, select Android.
If you're not sure which option to choose, select Android.
If you if you need to use more than one device to generate the codes needed by Okta to sign-in (perhaps you have an iPad and a mobile phone - hey, lucky you!), pause here and consider using the Authy app instead of Google Authenticator. Here's how to setup Authy. You can jump directly to this same step within those instructions.
Authy is a bit more technical to setup, but can be a significant help if you have multiple devices, or if you need to change devices. Need more convincing? Feel free to take a look at Why Authy many serve you better than Google Authenticator. Plus, if you don't have a mobile device capable of using Google Authenticator, Authy Desktop is an excellent workaround.
If you just have one mobile device, Google Authenticator is simple to use and includes a Restore feature if you lose your phone.
If you don't already have it installed, follow the prompts to install the Google Authenticator app on your mobile device and click Next.
- On your mobile device, open the Google Authenticator app, tap the "+" icon.
- Use your mobile device to scan the QR Code displayed by Okta, then click Next.
- Once installed, the Google Authenticator app needs no internet connection to generate a time-based code, but it does require an accurate time on your mobile device. The Google Authenticator app will generate a 6-digit, time-based code on your mobile device.
Enter the 6-digit code that was generated by Google Authenticator into Okta and click Verify.
- If all went well, you are now be setup to use Multi-Factor Authentication and should be signed into the website or service you were attempting to access!