ABOUT THIS SERVICE
SFU’s Multi-Factor Authentication (MFA) refers to using two or more independent items to verify your identity, typically something you know (i.e., your SFU computing ID and password) and something you have (i.e., a time-based code).
By using MFA, your digital identity, data, and access to systems are still protected even if your password is compromised.
Who needs to set up MFA?
MFA enrollment is required for the following SFU computing accounts:
- Faculty and staff (including TAs and RAs)
- New SFU students (required to enroll in MFA by the end of your first semester)
- Sponsored accounts
All other existing accounts who haven't enrolled in MFA, including some current students, alumni, and retirees will be required to enroll in MFA at a later date.
Note that some SFU online services require enrollment in MFA as a condition of access, regardless of whether your type of account is generally required to enroll in MFA. We recommend that all SFU users set up MFA to ensure you continue to have access to SFU services.
WHICH SFU APPLICATIONS ARE PROTECTED BY MFA?
Currently, MFA at SFU is implemented for web applications that use SFU's Central Authentication Service (CAS) for authentication. You will be prompted for your MFA code when you sign into most web applications and/or services at SFU, including:
CAS-PROTECTED WEB APPLICATIONS
- goSFU, Canvas
- FINS, myINFO
- SFU Mail (via a browser)
- Zoom
- Microsoft 365 (via web portal)
- SharePoint
- AEM (author.sfu.ca)
- SFU Maillist (maillist.sfu.ca)
- Research Ethics Application system (Kuali)
- Off-campus access to Library resources
OTHER SERVICES (NON-BROWSER)
Note: Future services at SFU will require you to be enrolled in MFA. More details will be announced with the new services.
DO I NEED TO HAVE CELLULAR SERVICE OR DATA COVERAGE TO USE THE MFA APPLCATIONS?
No; Aside from the initial app download, TOTP MFA applications do not require any internet connection, cell service, or data coverage to display the MFA codes.
Note: TOTP (Time-based One-time Password) protocol for multi-factor authentication requires a time-based (30 second) code that the user must enter. It changes every 30 seconds to maximize security.
Learn about MFA
SET UP MFA
The initial setup includes three parts which will take approximately 5 minutes.
Set Up MFA
Have different needs? Here are some role-specific guides:
MANAGE MFA SETTINGS
You can manage the following MFA settings using the SFU MFA Management App:
Manage Your MFA
RESOURCES
FAQ
How-to guides