Google Suite MFA: New Mexico Tech

Google Multi-Factor Authentication Information

Overview of Multi-Factor Authentication

New Mexico Tech requires Multi-Factor Authentication (MFA) for all Google Workspace accounts.

MFA, is when your system requires an additional piece of information (a second factor) in order to gain access to the system or your account on the system. This limits the exposure of a password that may have been compromised by requiring a one-time or calculated passcode to verify. Google often calls this 2FA (two factor authentication) or 2SV (two step verification).

When users login to their accounts they will be notified if they have not yet set up MFA. The system will provide a date by which the use must have the additional authentication factor set up before the account stops being accessible by the account owner. Once the second factor is set up, account owner regains access to the account.

Setup of MFA on Google Workspace Account (GMail, etc)

Google has written a very good document on setting up MFA on your Google Workspace account:

Turn on Google MFA

Google Supports (as of January 2024) the following methods:

Security keys - A physical key, such as a USB/Bluetooth Key or a Smart Phone's unique ID via an app.
Google prompt, Text Message, or Voice Phone call - Google Prompts use apps installed on a smart phone (such as YouTube or other Google applications), Text Message, or Voice Phone call.
Google Authenticator app - An app you can download on your smart phone that, once set up, will provide one-time codes as a second factor. Other apps can potentially be used as well.
Backup codes - Codes that Google provides as one-time use codes to gain access to the account. Usually these are used as a last resort to regain access to your account.

Remembering MFA on Private/Personal Devices

If you have a device that is secure, private and used regularly (such as your office computer), you may skip a second step for a period of time.

NMT does not recommend this on shared devices, lab computers, and other non-private shared computers.

To stop requiring a second verification step each time you sign in on your computer or phone, check the box next to "Don't ask again on this computer" or "Don't ask again on this device."

Important: Remember to only check this box on devices you regularly use and don't share with anyone else.

Google MFA Frequently Asked Questions (FAQ)

What types of authentications do you recommend?

We don't have any preferences

Can you have the authentication app on more than one device?