Multi-Factor Authentication (MFA)
This information only applies to users who have one of the privileged roles mentioned below...
Due to the access NCEdCloud LEA Administrators and LEA Data Auditors have to student and employee data, Multi-Factor Authentication (MFA) will now be required for users with either of these Roles in the NCEdCloud IAM Service. NCDPI will be rolling out MFA for these privileged users statewide on May 9th, 2019. MFA will not be required for users with LEA Help Desk and LEA Student Help Desk roles at this time.
Webinars on MFA were held on April 9th and May 2nd, 2019. The link to the Webinar Slides is located to the right. To see all of the information on MFA in one place, you can open/download the full Multi Factor Authentication (MFA) for NCEdCloud document. Instructions for looking up your privileged users and setting up the individual authentication apps are located below.
FAQs on Multi-Factor Authentication and One-Time Passwords are in their own Category on the NCEdCloud FAQ Page.
Instructions for setting up Authentication AppsTo prepare for setting up your One-Time Password to access the NCEdCloud IAM Service you will need to download one of the following authentication applications to your mobile device or computer. Decide which application you will be using (e.g. Google Authenticator, RapidIdentity, Authy Desktop) and select the appropriate instructions from below. Links to the applications are included in each set of instructions. NOTE: Until May 9th, you will not be able to configure the One-Time Password in NCEdCloud.
- Setting up your OTP with Google Authenticator
- Setting up your OTP with RapidIdentity
- Setting up your OTP with Authy Desktop
As a part of this implementation, we encourage LEAs and charter schools to review the list of staff members that currently have LEA Administrator and/or LEA Data Auditor roles to ensure that these roles are still required.
Users with Privileged RolesIf you are not familiar with how to check who has the LEA Administrator or LEA Data Auditor roles, the process will require an “advanced search” under your Profiles tab in NCEdCloud. The commands also require an LEA Administrator role to execute. An instruction sheet is provided below, as well as documentation on Revoking privileges and Resetting the OTP.
- Finding Users with Privileged Roles in NCEdCloud
- Revoking Privileged User Roles
- Resetting the MFA One-Time Password for Privileged Users