Multi-Factor Authentication
Multi-Factor Authentication
Multi-factor Authentication (MFA) enhances security by adding a layer of protection to the authentication process.
Description
Multi-factor Authentication (MFA) requires you to verify your identity with something you know (your credentials) and an item in your possession (your device). As a result, MFA effectively prevents unauthorized access, even if your password has been compromised.
The CSU has selected Duo (duo.com) as the multi-factor authentication provider. The multi-factor authentication project will initially roll out Duo for Google Workspace to faculty, staff, and students. Other campus applications will be added to the deployment list to ensure SDSU information and your digital identity is protected.
Goals / Deliverables
Goals
- Provide a highly available, scalable, user friendly, integrated multi factor authentication solution for the University.
- Enhance SDSU security and privacy posture across the enterprise.
Deliverables
- Enable MFA to all SDSU SSO integrated Apps.
- MFA website to provide self-support
- Identify networks or applications that will require more work to make them "MFA ready"
Timeline
2020 | 2021 |
January
|
January
|
April
|
February
|
May
|
March
|
July
|
April
|
August
|
May
|
September
|
June
|
November
|
July
|
December
|
August
|
RACI
Task/Deliverable | Ricardo Fitipaldi, Interim CISO | StratComm | ITSO | ITUS | Library HUB | IT Leadership | Jerry Sheehan, VP for IT / CIO |
---|---|---|---|---|---|---|---|
Project Management | A | R | C | I | |||
Faculty and Staff Support | C | C | R | C | I | ||
Student Support | C | C | C | R | C | I | |
Communication Strategy | C | R | C | C | I | ||
Workshops | A | R | C | I | |||
Duo Enabled on Google Workspace | A | R | I | I |
RACI Key
- Responsible: People or stakeholders who do the work.
- Accountable: Person or stakeholder who is the "owner" of the work.
- Consulted: People or stakeholders who need to give input before the work can be done and signed-off on.
- Informed: People or stakeholders who need to be kept "in the picture."
Updates
