Set up Multi Factor Authentication (MFA) on your account
Introduction
Multi Factor Authentication (MFA) provides a second layer of security when authenticating to CTS managed web applications. Beyond authenticating with just a password, MFA verifies that you also have an approved device in your possession, making it exponentially more difficult for unfriendly parties to gain access to your account. Most mobile devices also now have biometrics (fingerprint or face ID) integrated into their security, increasing the security of MFA even further.
Security in a nutshell
Typically, account security is divided into three categories:
Something you know (e.g., a password)
Something you have (e.g., a phone)
Something you are (e.g., thumbprint or face ID)
Of these three categories, the "something you know" category is the weakest, as it is independent of the user's presence (if someone guesses correctly, they can gain access to your account) and is dependent on the user choosing a strong password.
Multi-Factor Authentication (MFA) refers to adopting the validation of more than one of these categories before successful authentication to organizational systems.
Enforcing MFA requires users to enter a password and also verify their identity through one of several means (text message, phone call, authenticator app).
MFA overview (3 minute)
Set up MFA on your CTS user account
Register contact methods
For first-time users, when you attempt to login to a CTS managed web application (e.g., My CTS, Canvas, Office 365, etc.), you will be prompted to complete MFA registration by setting up your contact methods.
This sketch cannot currently be displayed in exports
You may be prompted to download Microsoft Authenticator. This app makes MFA much easier to use. Refer to Set up Microsoft Authenticator for MFA for more information. If you'd like to skip setting up Microsoft Authenticator, select I want to set up a different method.
This sketch cannot currently be displayed in exports
Text or Phone MFA
- Clicking I want to use a different method presents a dropdown box. Choose Phone.
- Type in your phone number and select whether to receive a code via text message or voice call.
For some users, a phone number may already be pre-poulated in the box. Please verify that the phone number listed is correct before continuing.
- Upon submission, you should receive a text message or phone call with a verification code. Type it in the box.
This sketch cannot currently be displayed in exports
Reminder: The Microsoft Authenticator app makes MFA much easier and less intrusive to your workday. Consider downloading it today. Refer to Set up Microsoft Authenticator for MFA for more information.
- After verifying your text/phone number, you should be able to attempt logging in with MFA.
Authenticator app MFA
Login with MFA
- Visit https://mycts.covenantseminary.edu .
- Type in your CTS email address and password.
- You should now be presented with the MFA prompt. Choose to receive a verification code with your preferred method.
- Type in the code you receive to complete authentication.
This sketch cannot currently be displayed in exports
Manage MFA sign-in methods
At this point, MFA setup is complete. If you would like to make changes to your sign-in methods (e.g., a wrong phone number is listed, you get a new phone number, or you download an authenticator app), visit https://mysignins.microsoft.com/security-info . For more information about other sign-in methods, refer to Set up Microsoft Authenticator for MFA
Re-authenticate apps
In addition to enforcing MFA for web applications (e.g., My CTS, Canvas, etc.), certain apps like Microsoft Outlook, Word, and Teams will require you to re-authenticate once MFA is enabled. This is similar to when you change your password and these apps prompt you to re-authenticate. This is a one-time re-authentication with MFA enabled.
This sketch cannot currently be displayed in exports