Changing how you access eHR, RAMSS, D2L and Library eResources
Beginning August 1, 2018, all Ryerson instructors and staff will be required to use two-factor authentication in order to access eHR, RAMSS, D2L Brightspace and Library eResources.
Step-by-step instruction on how to set up and manage two-factor authentication is available online.
Why your account’s security is so important
We know that university accounts are under constant attack and protecting your account is a critical step in safeguarding your personal information and work. Attackers’ goals vary, but can include:
- Payroll diversion where the attacker logs in to your eHR account and changes your direct deposit information so your pay is deposited into their bank account.
- Identity theft where information in your account is used to apply for credit cards or other services in your name.
- Theft of intellectual property such as journal articles or research data.
- Stealing exam information or changing grades.
How two-factor helps secure your account
Two-factor is the best way to protect your Ryerson account and the information in it. With two-factor enabled, even if someone guesses or steals your password, they would not be able to access your account without something only you would have, such as your phone.
What happens when you enable two-factor
Occasionally, you’ll need to take an extra step during the login process. For example, if you’re logging in to eHR, RAMSS, D2L Brightspace or Library eResources on your computer, you’ll first enter your username and password. Then, you’ll be asked to enter a code. This code is generated by an app on your phone and once you type it in to the screen, the login process is complete.
If you don’t have a mobile phone
As an alternative to an app on your phone, you may also use one of two other devices.
An inexpensive universal second factor (U2F) security key can be purchased for use with the Google Chrome or Firefox browsers. The least expensive model is likely the HyperFIDO Mini which normally retails for about $10. Learn more about using a U2F key.
Similarly, a small one-time verification (OTV) code generator device can be used instead of your phone. OTV generators are available from Computing and Communications Services (CCS) for $30 and can be requested using the One-Time Verification (OTV) Code Generator Request Form on the CCS website.
If you forget your phone or the battery dies and you can’t log in
Backup codes are automatically generated for your account when setting up two-factor. It’s a good idea to print out these codes and keep them in your wallet, just in case something happens to your phone.
For more about two-factor authentication, visit the Frequently Asked Questions section of the two-factor authentication page. If you have any additional questions, contact the CCS Help Desk at email@example.com or 416-979-5000, ext. 6806.