Okta: Overview and Setup

Overview 

Okta is UW-Eau Claire's multi-factor authentication (MFA) solution.  It adds another layer of protection to your account and information by requiring an additional step to log in. In addition to entering your password, Okta notifies you whenever someone attempts to log into your account, prompting you to either allow the login or deny it.

Set Up Okta Verify App

The steps below are for your initial enrollment in Okta. If you need to add a new authentication device, please use the steps listed in the Adding Additional Devices portion of this article.

NOTE: To proceed with setup, you should have access to both a computer and the mobile device, usually a smartphone, that you will use for multi-factor authentication.

On the Computer

1. Navigate to setupokta.uwec.edu and sign in to your account.
   • 
2. You will be prompted to set up security methods for your account.  Select Set up for Okta Verify.
   
   • 
3. Your screen will display a page with app download instructions for your mobile device and a QR code. Keep this window open as you proceed to the steps for your mobile device.

On the Mobile Device

1. Install the Okta Verify app from your device's respective app store.
2. Open Okta Verify.
3. Tap on Get Started or Add Account.
   
4. Select Organization when prompted for account type.
   
   • 
5. The next screen should ask if you have your QR code. This should still be open on your computer. Tap Yes, Ready to Scan.
   
   • 
6. Allow the app access to your camera if prompted, and then scan the QR code on your screen.
7. If prompted, allow the app to send notifications to your phone.
8. Tap Done to complete the process.

NOTE: Please consider adding a phone number for authenticating via phone call or text. This is useful if you change phones or lose access to the device you just set up. Try it out by logging into the Okta Dashboard using these instructions!

Set up Phone Calls or Text Messages

The steps below are for your initial enrollment in Okta. If you need to add a new authentication device, please use the steps listed in the Adding Additional Devices portion of this article.

It is recommended that you also enable the ability to authenticate using phone calls or codes sent over SMS text messages. If you replace your current mobile device, you will still be able to access your account as long as you maintain the same phone number.

1. Navigate to the Okta Setup Page and sign in to your account.
2. Click on Set up under Phone.
   
   • 
3. Sign in again, if prompted.
4. Click on Set up.
   
   • 
5. Select how you wish to receive your code:
   • SMS if you wish to receive a code via text.
     
     • 
   • Voice call if you wish to receive a code via a phone call.
     
     • 
6. Enter your phone number.
7. Retrieve the code from your phone and enter it on your computer.
   
   • 

Adding Additional Devices

If you've previously enrolled in Okta, it is possible to add or remove security methods through your settings in the Okta Dashboard.

1. From a computer, log into the Okta Dashboard.
2. Click on your name in the upper-right and select Settings.
   
   • 
3. Select the type of device you wish to set up.
   • 
     • NOTES:
       • If you wish to set up the Okta Verify app on another device, click Set up another and follow the steps to set up Okta Verify App after the QR code displays on your phone.
       • If you want to set up authentication through call or text on another phone number, click Set up another for the Phone option and follow the prompts.
       • If you no longer have access to a device or phone number, you can remove it from this screen.

Using YubiKeys & Tokens

If you already have access to a YubiKey or would like to purchase a YubiKey using personal funds, you may do so and then self-enroll that YubiKey using the Adding Additional Devices instructions above and selecting Security Key or Biometric Authenticator.

Hardware tokens are available for approved accessibility needs or use cases in which the smartphone app, phone calls, and/or text message options will not work. If a token is needed, a request can be submitted via the Request Hardware Token for Okta Authentication eForm. Please include your reason for requesting a token in the eForm. Once verified, LTS Information Security will be in contact to coordinate the pickup of the Okta token.

Logging in with Okta Verify

Any UWEC services that require authentication will require multi-factor authentication using Okta. You can also test your ability to log in using our Okta login test page.

1. Log in to your account.
   •  
2. Okta will ask you to select one of the following security methods: enter a code, get a push notification, or phone.
   • 

Choose Your Security Method

Enter a Code

Use an offline code produced by the Okta Verify app on your mobile device.
This method does not require Internet access.

1. Open Okta Verify on your device.
2. Locate the account (ex. employjj@uwec.edu) you are logging into.
3. Tap on the icon to show the code.
4. Click Select on the device you are logging into.
5. Enter the code in the appropriate field.

Get a Push Notification

1. Send a push notification to your mobile device.
2. Click Select on the device you are logging into.
3. Click Send Push.
   • NOTE: You can check a box on this screen to set up push notifications as the default way of authenticating in Okta Verify.
4. You will receive a notification on the smart device that you configured Okta Verify on.
5. Tap Yes, it's me in the notification and complete any necessary verification on your device.

Phone

Receive a code through SMS or phone call.

1. Click Select on the device you are logging into.
2. Okta may want to send an SMS code by default.
   • If you wish to proceed with SMS, click Receive a code via SMS.
   • To receive a phone call, click Receive a voice call instead.
3. Enter the code you received via SMS or phone call.