Multi Factor Authentication (MFA) is an essential part of securing your CEDoW account. What it means is that after you enter your username and password you will be prompted to verify who you are via another means - this could be any of the following methods: (SMS) Text Message, Okta Verify App, Google Authenticator, and Biometric (e.g fingerprint).

Video Setup Guide

The following video will walk you through the basics of setting up MFA. Alternatively, you can follow the step-by-step instructions in the "Instructions" section below.


  • Click the following URL:

  • You will be presented with the CEnet login page where you can enter your username and password and click “Log In”. 

  • Once you have signed in you will be presented with the following page, you can select which factor  you would like to set up

  • Once you have decided on which factor you would like to use click on the setup button next to it and follow the instructions below for that factor.

SMS Authentication

Okta Verify App

Security Key or Biometric Authenticator

Google Authenticator

Trusting Your Device

Once you have set up your MFA factor(s) as above, you will then be shown an MFA prompt each time you sign in to certain services (such as ESS, Compass, Google, etc.). When you are shown the MFA prompt, you will be given the option "Do not challenge me on this device again." Checking this option means that you will no longer be prompted for MFA when logging in to that particular service on that particular device/browser (ie you will need to check the option the first time you log into each service such as ESS, Compass, Google etc.).

Note that you may still be shown an MFA prompt if you clear your browser's cookies, change between browsers (or devices), or after a period of time.

Enrolling Additional Factors

Once you have set up your initial MFA factor as above, you can add additional factors in the following way. We recommend enrolling at least two factors in case you lose or are otherwise unable to access one. If you have enrolled a biometric factor (such as a fingerprint reader or facial recognition), you will need to add an additional factor such as SMS or Okta Verify otherwise you will not be able to log in on any other device. 

  • Go to the URL
  • Click the green "Edit Profile" button if it is displayed
  • Verify your password and/or MFA prompt if requested
  • Click "Set Up" beside the additional factor you wish to enrol, then follow the steps for that particular factor as outlined above

If you have any questions or difficulty performing these instructions contact the ICLT Service Desk.