Microsoft Authenticator Setup

Download a PDF version of this setup by clicking HERE

Download a Word Document of this setup by clicking HERE

Prefer to watch a video? Get to step 7 first, then visit this link.

What is factor authentication?

Two-factor authentication (2FA), sometimes referred to as two-step verification or dual-factor authentication, is a security process in which users provide two different authentication factors to verify themselves.

The first factor will primarily be a computer/laptop and the second factor can be your phone, a verbal call or a text message. Two-factor makes it harder for criminals to break into your account. If you only use a password to authenticate and the password is weak or has been exposed elsewhere, it leaves an insecure avenue for attacks or fraudulent entry.

When you require a second form of ID, security is increased because this additional factor isn’t something that’s easy for an attacker to obtain or duplicate.

How does authentication work?

When you sign into your O365 account, you will receive a prompt for ID verification using one of the following authentication methods:

Something you know, typically a password
Something you have, such as a trusted device like a phone
Something you are, such as biometrics like a fingerprint

You can authenticate your second factor several ways, however, we strongly encourage you to use the Microsoft Authenticator App if your phone is able to utilize it. It is the fastest verification option allowing you to just tap approve on your phone and adds an extra layer of security.

The Microsoft Authenticator app will function and generate new codes every 30 seconds even when you don’t have cellular coverage.

Can two factor be hacked?

Although it is possible for two-factor authentication to be hacked, the odds are very low and 2FA is certainly the best practice when it comes to keeping accounts and systems secure.

One way two-factor authentication could be hacked happens through the SMS method or, in other words, the method by which a one-time use code is sent to a user’s phone number via SMS or an automated phone call.

This is why we recommend using the Microsoft Authenticator app because it adds extra security and codes are contained within the app.

There have been stories of hackers tricking mobile phone carriers into transferring someone else’s phone number to their own phone. The hackers contact the carriers pretending to be their victims, requesting a new SIM with the victim’s number. They then have access to any authentication code sent to that phone number. Called SIM swapping, this is probably the most common way of getting around 2FA.

But carriers’ own security processes are improving and even acknowledging those risks, 2FA remains a strong and essential tool in the fight against cyber-attacks and identity fraud.

Pre-Requisite

In order to use multi-factor authentication with your Capital account, you will need to ensure the following pre-requisites are met:

  • You have a phone that can receive SMS texts and/or download the Microsoft Authenticator app
  • Have a computer with Office 2016 (or higher) installed
  • Internet access to complete the setup

What if I don’t own a phone or my phone doesn’t work with the app?

If you don’t have a phone or your phone can’t use the authenticator app, you can use a mobile device like your university iPad. Install the Microsoft Authenticator app on the iPad. You will need to keep the iPad with you at all times to authenticate.

You can also receive verification codes via text or receive a voice call to your cell, home or office line. Instructions on how to set this up can be found HERE.

What other factors can I use to authenticate?

Verification method Description
Phone call Sign into your 0365 account from your computer. A call from Microsoft to your phone asking you to verify that it is you signing in. Press the # key on your phone to complete the verification process.
Text message Sign into your 0365 account from your computer. A text message from Microsoft is sent to a your mobile phone with a 6-digit code. Enter this code to complete the verification process.
Microsoft Authenticator App (Passwordless) Sign into your 0365 account from your computer. Microsoft sends a verification request to your mobile app on your phone asking you to Verify or Approve to complete verification process. This needs to be setup.
Code Generator with Microsoft Authenticator App Sign into your 0365 account from your computer. Microsoft sends a verification request to your mobile app asking for the generated verification code. Code changes every 30 seconds. Use this code to sign into your account.

Getting started

  1. If you will be using the Microsoft Authenticator app, you should download and install the app to your cell or mobile device (iPad) first. Visit the app store for your operating system and download for either Android and iOS devices. Setup instructions can be found HERE. You can also watch a video HERE.
  2. Go to your PC and open this link in your web browser – https://aka.ms/mfasetup. This will prompt you to pick a Microsoft account. Select your Capital email account.                                                         
  3. You will be re-direct to the “Capital Gate” sign in page. Enter your Capital email address or username along with your password and click Sign in.

Follow the instructions in the help document to complete registration of 2FA HERE.

What if I need help?

Contact the IT Help Desk, helpdesk@capital.edu or 614-236-6508. We are here to help if you have questions or a special situation that would require our assistance.

During the Holiday break – Monday, December 20, through Friday, December 31 – the IT Department will be performing system updates for various services outside of our normal maintenance windows. Many of these updates are simple and will just require a server reboot or two and outages will be brief and intermittent. However, there are a few key systems that will require extended outage time. For those services we will communicate the status below.

 
Service Update Status Planned Start Time
Main website Completed Monday 12/20/2021
Skype for Business Completed Evenings of 12/19/2021*
File Share Drives Completed Tuesday 12/21/2021
VPN services Completed Thursday 12/23/2021
Colleague (myCap, Colleague UI, etc.) Completed Wednesday 12/29/2021*
* Starting after 7pm
* May carryover to next day

 

 

Building Name

Location

Blackmore Library Basement, IT Help Desk
Capital Apartments Basement Lounge
Capital Center 2nd Floor Moe Lounge
College Avenue 1st Floor Lobby

3rd Floor Lobby

Cotterman Hall 1st Floor East Lounge

1st Floor West Lounge

2nd Floor Center Lounge

3rd Floor Center Lounge

Facilities 1st Floor Main Office
Law School 1st Floor Commons Lounge
Lohman Complex Hall Basement Lounge

1st Floor Lobby

1st Floor, Room 101

2nd Floor, Room 202

3rd Floor, Room 303

Public Safety 1st Floor Dispatch Office
Saylor Ackerman Hall Basement Lounge

2nd Floor Lounge

3rd Floor, Rm 318

Triple Lounge

Schaaf Hall 1st Floor Lobby

2nd Floor, Rm 270

2nd Floor, Rm 298

3rd Floor, Rm 370

3rd Floor, Rm 398

Student Union 1st Floor Lobby

1st Floor Denvy Bowman Lounge

1 Main Café’

Mezz Fitness Center

Trinity 3rd Floor Lounge, Rm 320
Troutman Hall 1st Floor Business Lounge

 

Alternatives to Cable TV Services

There are many online streaming service providers, however, here are some of the most common self pay services.

Self Pay Service Providers Cost Per Month*
Sling TV:

Sports, news, and entertainment with 30+ channels, 80k+ shows and movies on-demand.

Two channel line up options available: Orange and Blue for $35 each. No current student discount available. For more information, go to: SlingTV
Amazon Prime Student:

Access Amazon’s streaming catalog of TV shows, movies, free unlimited photo storage with Prime Photo, and two-day Prime shipping. Electronic textbook rentals, Amazon music unlimited and Kindle unlimited at a low additional cost.

Six-month free subscription with the option to cancel anytime. $6.49/month after six-month trial as long as you are a student. Go to AMAZON for more information.
Hulu Student Discount:

Full access to Hulu’s original streaming library of movies, kid’s shows, and TV shows. This subscription is ad-supported. Also includes Spotify premium service.

Hulu’s standalone plan is $1.99/month if you are a student. This subscription rate cannot be combined with the Disney Bundle (Hulu, Disney+ and ESPN). More info here: https://www.hulu.com/student
Disney Plus and Disney Bundle:

Unlike other streaming services, Disney Plus does not offer student discounts or free trials.  Students can subscribe to either Disney+ only or take advantage of the Disney bundle which includes Hulu, ESPN and Disney+.

The Disney+ standalone plan is $7.99/month and the Disney Plus bundle is available for $13.99/month. More info here:  https://www.disneyplus.com/welcome
Paramount Student Discount:

Watch everything from live-streamed sports to hit shows from MTV, Comedy Central, CBS news and more. This subscription applies only to their limited commercial plan, similar to Hulu.

Students can get 25% off Paramount’s regular monthly subscription plan of $4.99/month. Go to PARAMOUNT for more info.
YouTube Premium Student Discount:

Students can get ad-free unlimited videos and music with a YouTube Premium subscription.

The student plan is $6.99/month with a free 1-month trial. More info here:  https://www.youtube.com/premium/student
*Please Note: Changes in services and pricing can occur at any time at the service provider’s discretion and without notice.

There are many FREE online streaming service providers, however, here are some of the most common services.

FREE Service Providers
Sling TV Free:

Free live TV and on demand content

Visit: https://www.sling.com/deals/sling-free or https://www.sling.com/supported-devices/sling-free for info on supported devices.
AppleTV+:

Access to Apple’s original catalog of TV shows, movies, series, documentaries, and comedies

Free subscription with your new university issued iPad device.
Peacock TV:

Free TV, movies, TV series, news and on demand content

Visit www.peacocktv.com for more details. Registration may be required.
Roku Channel:

Free live TV, movies, TV series and on demand content

Visit: https://therokuchannel.roku.com for more details. Registration may be required.
Crackle:

Free movies, TV series and on demand content

Visit: https://www.crackle.com/ for more details. Registration may be required.
Pluto TV:

Free live TV, movies and on demand content

Visit: https://pluto.tv/en/live-tv/pluto-tv-crime-movies for details. Registration may be required.
Tubi:

Free TV, movies and on demand content

Visit: https://tubitv.com/home for more details. Registration may be required.
Plex:

Free live TV, movies and on demand content

Visit: https://www.plex.tv/ for more details. Registration may be required.
IMDbTV:

Free movies, TV series and on demand content

Visit: https://www.imdb.com/tv/ for more details. Registration may be required.

Questions, inquiries and concerns about cable services should be directed to the IT Helpdesk via email helpdesk@capital.edu.

Modification of Cable TV Services

In response to changing student and university needs, Capital University will be modifying its standard cable TV services on the Bexley campus. Cable services provided by Spectrum, will be discontinued in residence hall rooms, academic spaces and Trinity North apartments beginning Fall semester 2021.

New cable service and programming will be designated to community areas in residence halls and key academic spaces on campus to provide programming that fosters community building, student success and enhance the student experience. Programming will be revised as the technology and educational needs change.

Why is this Happening?

The decision to discontinue cable services was based on multiple factors:

• Increased investment in network infrastructure, wireless technology, and increased bandwidth service on all campuses.

• A survey of our residential students overwhelmingly indicated they do not watch traditional cable TV services from Spectrum. The majority watched TV programming using an online service provider such as Hulu or Netflix.

• Decreasing cable TV usage within the educational setting and increasing cable costs were not financially beneficial to meet the needs or demands.

Alternatives to Cable TV Services

If you are a student, you can take advantage of all the student discounts and subscriptions available by registering with your “.edu” email address.

Most streaming service providers will let you stream for free for the first few months, and you will be eligible for a student discount after your free trial ends. Many will also offer ad-free viewing, unlimited access to exclusive content, and partnerships with popular music libraries like Spotify. Additionally, there are some streaming services available for free.

Click HERE for a list of common online streaming services and content available.

What Streaming Devices Can I Use?

Streaming services will work on majority of mobile devices, such as iPads, Firesticks, Roku, laptops, tablets, smart TVs, gaming devices and cellular phones.

Ensure that you connect your device to the Capital network correctly to benefit from these services. Instructions for connecting your device to the network can be found HERE.

Where Can I View Cable TV Programming?

Cable TV services and programming can be viewed in residence halls common areas and designated academic buildings across the Bexley campus. Click HERE for a complete list of locations.

What is the New Channel Line Up?

Spectrum has provided Capital with cable programming that includes a variety of channel favorites such as the Big Ten Network, TLC, BET, The Food Network and CNN just to name a few.  A complete channel line up list can be view HERE.

Where Can I Get Help?

Questions, inquiries and concerns about cable services should be directed to the IT Help Desk, helpdesk@capital.edu.

What is Two Factor (2FA)?

Two-Factor Authentication (2FA) is used to strengthen ​the security of user accounts and University business systems that hold sensitive information. It adds another layer of online protection from damaging cyber criminal attacks that cost organizations millions.

As part of this initiative, effective July 12th, 2021, all Windows PC Users will be required to use 2FA when accessing University business systems and resources via VPN (virtual private network). Macintosh Users are currently using 2FA.

Why Two Factor?

We are all used to having one layer of security to protect our account which is our password, however, passwords aren’t enough to protect the University or you against cyber criminals who desire to gain access to resources using compromised credentials.

The goal of 2FA is to provide a higher degree of identity assurance of a user accessing University resources via VPN.  If cyber criminals obtain your username and password, they will still need access to your phone and/or a passcode to get into your account.

Having a second form of identification greatly decreases the chance of a criminal gaining access to devices, sensitive information, fraud and will build secure online relationships due to compromised credentials.

How Does 2FA Work?

You will need to download and install the Microsoft Authenticator App on your phone and configure it to work with your work PC. Detailed step by step instructions can be found below.

Once configured, you will need to use 2FA any time you log into the University’s VPN. You will need to enter your Capital username and password as well as authenticate through your phone. You will be required to use two different sources (factors) to verify your identity:

  • Something you know:  your Capital credentials (username and/or password), and
  • Something you have:  a phone and/or passcode

What If I Don’t Own a Cell Phone?

Please contact the IT Helpdesk, helpdesk@capital.edu or 614-236-6508 to have a ticket created and assigned to our network team. We will work with you directly for a resolution.

Can I Use VPN on my iPad or Other Mobile Device?

At this time, we are only recommending 2FA for your work PC. We will notify you once we are ready to roll out and support 2FA for mobile devices and the iPad.

Need Help? Have A Question or Concern?

If you have questions, concerns or need technical assistance, please contact the IT Helpdesk, helpdesk@capital.edu or 614-236-6508.

===========================================

If you would like to download a PDF copy of these instructions so that you can click on the embedded links in the documentation, please click here.

Microsoft Authenticator Setup

This week, IT was made aware that Microsoft recently activated a global security enhancement feature with all O365 email accounts in which they blocked your ability to forward email messages from your internal O365 account (capital.edu) to any of your external accounts such as Gmail or Yahoo. Internal forwarding, from one capital.edu account to another capital.edu was not affected.

Although Microsoft made this global change, they have allowed an option for IT to enable the external forwarding capabilities again, so we have re-enable this feature as of this morning, which should allow you to continue to forward messages from your internal account to any external accounts.

Please note: Since this change was made this morning, you may not have all your email in your personal account, you will have to log in to your Capital mailbox and see what messages you have received over the last few days that did not forward.

 

During the Holiday break the IT Department will be performing system updates for various services outside of our normal maintenance windows. Many of these updates are simple and will just require a server reboot or two and outage will be brief and intermittent. However, there are a few key systems that will require extended outage time. For those services we will communicate the status below.

 
Service Update Status Planned Time Frame
Main website Completed Morning of 12/23/20
Skype for Business Completed Morning of 12/23/20
File Share Drives Completed Morning of 12/24/20
Colleague (myCap, Colleague UI, etc) Completed Evening* of 12/29/20
* Starting at 5pm

 

One other change to happen during the week of the 21st is that the login page for Office 365 will change to the same login page with the “Gate” that you see with MyCap.

Update: This has been completed.

DATE:                 Thursday, November 11, 2021

TO:                      All Capital University Faculty, Staff and Students

FROM:               The Department of Information Technology

SUBJ:                  Spam/Phishing Attacks on Campus

Recently there has been a sharp increase in email phishing scams due to compromised Capital user accounts.  A compromised account is one that is accessed by a cybercriminal who is not authorized to use that account.  When student or employee accounts become compromised, those accounts are used to send spam and phishing emails to people on and off campus.

The latest phishing scam on campus involves the circulation of an email message for a “dog sitting” job opportunity.  This overpayment scam plays out roughly the same way as with the “nanny or caregiver scams,” but with some slight variation.

  • The scammer will reach out to you online or via text once you give them your personal contact information stating they want to hire you. Typically this is without them interviewing or seeing you in person
  • An upfront financial advance offer is made by the scammer for your services, typically in the form of a money order from some type of “business” the scammer claims to work for, or a government “embassy”.  They may also ask you to accept deliveries or make purchases on their behalf with promises of reimbursement
  • The amount of the money order will always be written for more than the amount needed, and the recipient will be asked to keep a portion of the funds and either send the extra funds to a third party, or if they have changed their mind, return all the money as soon as possible
  • If you were asked to accept deliveries or purchase items in preparation for the dog sitting position, you may be asked to forward an upfront payment to a third party (via check, wire transfer, gift cards, etc.) to cover the cost of the materials

Although the money orders from the scammer are all fake and fraudulent, many banks will still cash them and place the funds into the pet sitter’s account within a few days.  However, usually within a month, the money order is returned as fraudulent, and the bank will withdraw the money from the pet sitter’s account.  The bank may also charge extra fees, and may pursue the pet sitter with criminal charges for cashing a fake check.

Please be aware and cautious when reviewing and/or responding to email messages with job opportunities that require you to send money up front as a condition of employment or offer to pay you in advance.  Trust your instincts and remember if it sounds too good to be true, it probably is a scam.  Never offer your birth date, SSN, username, bank, or other private information to anyone online.  Especially if they are asking you to “confirm” something for security reasons which is a red flag of a spam.  Educate yourself and read through previous email scams to get a feel for how the spam messages work.

Key Points and Red Flags in Identifying Scams

  • Paying close attention to the “From” and “Reply-to” in the email address to see if it’s a valid address you recognize
  • Check the body of the message to see if the English wording is awkward  or if there are lots of misspellings in the sentence structure
  • Be cautious if someone wants to only communicate with you via email or text messaging. Scammers do not want to talk to you over the phone or video chat
  • Most job postings like this will state that they are “moving to your area”, however, they will not be able to tell you where your area is if you question them
  • If someone is very keen on sending you money before meeting you, this is likely a scam!  Never accept a pet-sitting assignment or payment until you’ve met a potential client in person at the initial consultation.  No legitimate employer will ask you for your banking information or give you money without meeting with you
  • If a potential client urges you to transfer money using a service like Western Union or MoneyGram, it’s probably a scam. Don’t send money to someone you don’t know, either in cash or through a money transfer service. Likewise, don’t deposit a check from someone you don’t know and then transfer the money

IT works diligently to help prevent and counteract spam and phishing scams through various security appliances such as Barracuda which scans every incoming email message for spam and phishing exploits. Barracuda will catch majority of exploits, however, nothing is fool-proof and it takes the cooperation from all of our campus users to help keep the infrastructure and user accounts safe at all times.

What Do I Do If I’ve Been Scammed

  • If you or someone you know was tricked into transferring money for any reason, the Federal Trade Commission (FTC) wants to know about it: https://www.ftccomplaintassistant.gov/#crnt&panel1-1 so please report it
  • Next you should report the incident to the money transfer company.  The two common companies are MoneyGram: 1-800-666-3947 (1-800-955-7777 for Spanish) or com and Western Union: 1-800-448-1492
  • Make a report and work with your bank
  • Notify and report it to the caregiver web site you were contacted through so they can stop the scammer from targeting anyone else on the site. The scammer is likely trying to prey on others who are looking for work
  • Finally, file a complaint with the Internet Crime Compliance Center (IC3) which is a partnership between the Federal Bureau of Investigation (FBI) and the National White Collar Crime Center.

Visit the IT Status Page for detail information on other forms of email phishing scams:  https://inside.capital.edu/ITStatus/index.php/category/spam-phishing/.  Questions, inquiries and concerns can be directed to the IT Help Desk, helpdesk@capital.edu or 614-236-6508.  If you suspect that you have received a phishing scam, please report it abuse@capital.edu.