Multifactor Authentication (MFA)

As part of the requirements for the town’s cybersecurity insurance we are rolling out Multifactor authentication (MFA).  All computer systems, including those used by the Town, are constantly and increasingly being attacked by people with bad intentions.  You have likely been asked to increase the protection for your online banking, shopping, and other business interactions by adding 2 factor authentication (2FA) or multifactor authentication (MFA). Basically, 2FA and MFA are the same.  The added security comes from the 2^nd factor of proof that you are you:

• Factor #1 — Something you know like your account name and your password.
• Factor #2 — Something you have like your smartphone.

To verify your identity, you enter the password you know and then use an authentication associated with the phone you have.

OneLogin is the application the Town selected to increase security for the Town’s computer systems.  The Town already has multiple layers of protection to stop harmful emails, block access to harmful websites, and stop bad people from accessing our systems.  The OneLogin application will further reduce the danger of people accessing to Town systems, if they hack your accounts, use a compromised password, and do other imposter/trickery manipulation.

The QR Codes below will take you to the app store and allow you to download the OneLogin Protect app to your smartphone.  You can download the authenticator ahead of time to be ready for the next phase of the rollout. You will receive additional information that will connect the OneLogin app to your accounts when your department and/or group is in the next – enrollment phase for OneLogin MFA.

We also have the option of a hardware token that plugs into a USB port on the computer you are using. It has a button that you touch to input your MFA code. These are available by request only.

Note: There are other features we will be rolling out after the initial rollout of MFA, that includes making the use of shared accounts easier and requiring fewer password entries when switching between applications.

If you have any questions you can contact the TS Helpdesk by entering a ticket, via email, or calling 919-969-2020.  The TS team will get back to you as soon as we can.

Best Practices for OneLogin Self-Service

Tip: Add security questions to reset your password

Adding security questions as a way to access your account will let you be able to reset your own password without having to submit a Helpdesk ticket.

To do this:

• Using a web browser, log in to TOCH.Onelogin.com
• Click on your name at the top right and select "Profile".




• On the left click on Security Factors > Add Factor. Select "OneLogin Security Questions". You must answer a minimum of 6 questions. Each of the six have a drop-down box where you can select the question you want to answer.

    


• After you have answered 6 questions the Submit button will turn blue. Click the Submit button to save your questions & answers.
• Please note that only you can see your questions and answers. IT/TS does not have access to your information.