Review MFA authentication methods to prevent interruptions to Workday access

January 30, 2025

Effective March 25, 2025, WSU is removing both SMS (text message) and voice call multi-factor authentication (MFA) methods used for logging into WSU resources. WSU account users continuing to use the SMS or voice call as their sole authentication method will be locked out of their WSU account.

This change impacts all WSU employees and affiliates who log in to WSU resources including Workday. Any Workday users who have not established an alternative MFA method before 8 a.m. on March 25 will be unable to log in and perform actions in Workday. This will impact users’ ability to perform critical tasks including:

Time and absence requests, entry, or approval
Initiation or approval of any finance, HR, or payroll actions
Workday reporting
Employee-as-self tasks
Accessing tax documents or payslips

This change also impacts Workday test or preview environments and Adaptive Planning.

Individuals locked out of their account(s) will be required to contact the Crimson Service Desk to regain access.

To avoid any interruption to your Workday access, Modernization is encouraging all employees and affiliates who use Workday to review their active MFA settings and follow WSU ITS’ instructions for setting up one or more of the following authentication methods:

Okta Verify: Approve a push notification via this mobile app
Okta FastPass: Approve a notification via this desktop app
Google Authenticator: View a time-based one-time passcode via this mobile app
Security Key: Insert a physical, specialized key into the device to authenticate
Biometric Authenticator: Authenticate via fingerprint or facial recognition

For comprehensive guidance on how to review and update your MFA authentication methods, visit the ITS MFA Options reference guide. Questions or concerns regarding this change may be submitted to the Crimson Service Desk.