The "One-Time" in One-Time Password (OTP) refers to the number of times you can USE a specific 6-digit passcode to login (one time), not something you only enter once. A new valid password is generated for your account every 30 seconds so that someone can't look over your shoulder and see your 6-digit code, or a "hacker" can't capture what you enter and try to reuse it at a later time. It's purpose is to add a "second factor" in addition to your account password, to make your login more secure. It is usually only implemented for user accounts that have access to highe
Multi-Factor Authentication (MFA) or One-Time Passwords (OTP)
It you get an error when trying to setup your Authy app, it is likely because you are being blocked from accessing the Authy.com site to register your installation. You should contact your local IT Support to see about having the Authy.com site "whitelisted" in your content-filtering service (Zscaler or another application).
The One-Time Password (OTP) is tied to your NCEdCloud ACCOUNT, not to a device. Therefore, when you login the first time after MFA is implemented (or after an OTP Reset) and see the OTP Setup Page, the QR Code and the AlphaNumeric Code below it are what links the NCEdCloud MFA to the 6-digit code presented by your authentication application (Google Authenticator, RapidIdentity, Authy Desktop). The QR code and the AlphaNumeric Code are "identical", as far as providing the same information to authentication apps - as long as they're taken from the s
Each 6-digit code generated by any of the authentication applications is good for 30 seconds from the time it is first displayed.
The short answer is once per day. Your OTP (6-digit code) is part of the login process to NCEdCloud, so if you typically login to NCEdCloud more than once during the day (you use different clients or close your browser during the day) you will need to enter your OTP on the 3rd screen of the login. If you use the same client throughout the day, then you’ll only login (and enter your OTP) once.
The Authy Desktop authenticator is available for both Windows and macOS, and there is a Chrome extention available to install it on Chromebooks. There is also a mobile app version available (like Google Authenticator and RapidIdentity), that runs on Android and iOS.
Yes. Eventually MFA will be implemented for all privileged roles in the NCEdCloud IAM Service, including LEA Help Desk and LEA Student Help Desk.
It depends on the app. Both the Google Authenticator and RapidIdentity app that run on your mobile device use a time-based one-time password (TOTP) algorithm to provide a valid 6-digit code (it is not texted to your phone). However, Authy requires that you enter your cell number when installing and registering the app.
It depends. You have two options to obtain the 6-digit code required at login - an app that runs on a mobile device (phone or tablet), or a desktop version (Authy) that runs on your laptop.
At this time, only employees with LEA Administrator or LEA Data Auditor privileged roles will be required to use MFA and enter a One-Time Password (OTP) with each login to NCEdCloud.