Multi-Factor Authentication (MFA) Has Been Enabled With Shibboleth And Haka Services on 15 Aug 2022

Multi-factor authentication (MFA) has efficiently reduced phishing of UEF user accounts and inflicted security breaches. All UEF user accounts use multi-factor authentication when logging into email and other O365 services (applies to staff members and comparable users, students, CCL students and external users).

In order to guarantee information security, it is necessary to introduce MFA into further services. Starting 15 Aug 2022, MFA has been enabled with some other services that use UEF user accounts or HAKA authentication to log in.

How may this change affect you?

When logging into UEF services using Shibboleth or HAKA authentication with a UEF user account, you have to authorize the login with your mobile device. UEF email service, for example, uses a similar method.

Shibboleth/HAKA services include:

• Staff applications archive.uef.fi, Certia Servicedesk, eParking.fi, M2, Opintopolku, ResearchProfessional database, Rondo, SoleTM, Academy of Finland eServices Sara, UEF Connect (website updates), Webropol
• Student applications Digicampus Moodle, Primo (library), SoleMove, wiki.uef.fi

Shibboleth enabled services with multi-factor authentication have been tested during the summer. Enabling MFA doesn’t have significant effects for the end user. Even though MFA improves information security, its introduction would seem to improve the end user experience. Issues with two services were identified during the testing period and they have been excluded from MFA.

If you experience any issues with one of these services, please use the eServices portal to report it (https://asiointi.uef.fi -> Report IT issue)

Recommendation: Use the Authenticator app with MFA

If you have a smartphone, install the Authenticator app and use it with UEF MFA. It’s more secure and user friendly than SMS authentication.

Microsoft Authenticator app deployment instructions (New tab)

Instruction video (New Tab)