MFA for iLearn, eStudent and OneHelp

Initial set up

If you have:

  • already setup Okta for iLearn/eStudent, no further action is required, you will simply be prompted to provide your 2nd factor authentication when you sign in to OneHelp
  • not previously setup MFA with Okta for iLearn or eStudent, please follow the steps below (takes less than 2 minutes). It is best not to use your mobile device to carry out the actions as you will need your mobile to scan a QR code at a later step.

1.  Go to MFA setup page

Click on the MFA setup link (opens in new browser tab) and log in using your Macquarie student OneID and password.

2.  Click on 'Setup'

(Okta Verify or Google Authenticator)

3.  Scan QR code using Authenticator app (do not use phone camera app)

Shown on screen using your preferred authenticator app on your mobile device.

Open your preferred Authenticator app on your mobile device and select the option to add an account & then select option to “Scan a QR Code”.

Important: Please use your authenticator app built-in scanner to scan the QR code for MFA setup, not your device's camera.

5. Enter six-digit code (OTP)

A six-digit code (one time password/OTP) will be requested on this screen. Ensure you use the six-digit code from the mq.okta.com account in your mobile phone's authenticator app, as shown in the example below.

Enter the code then click on ‘Verify’ to proceed to the next step.

6.  Click on Set up later

Once MFA is setup, please do not delete the authenticator app as you will require it for each time you sign-in to iLearn or eStudent while you are not connected to MQ university campus network.

Click on 'Set up later' button to finish.

Congratulations! You have now successfully set up MFA.

Once I have setup MFA successfully, what is required to log back into iLearn or eStudent?

Once you've set up Multi-Factor Authentication (MFA) and have registered an authenticator app like Okta Verify, Google Authenticator, Authy, or Microsoft Authenticator, using MFA follows these steps if you are outside the MQ University campus network:

  1. Login as Usual using your MQ student ID and password.
  2. Prompt for MFA Code: you'll be prompted to enter your MFA code, which is a 6-digit code.
  3. Open Your Authenticator App: On your phone or other device where your authenticator app is installed, open the app.
  4. Find Your Code: Inside the authenticator app, you'll see a list of accounts you've set up for MFA. Find the code that corresponds to your MQ university student account. Enter the 6 digit code from the mq.okta.com account
  5. Enter Your Code: Go back to the iLearn or eStudent page you are attempting to login, where you see the MFA prompt and enter the 6-digit code from the authenticator app & submit. If you enter a wrong 6-digit code 5 times, your account will get locked, so please make sure you enter
    the correct code.

Remember, the MFA codes generated by the app are time-sensitive, so they need to be entered fairly quickly after they're generated. If you enter a code and it doesn't work, it might have expired. If that happens, simply use the new code the app generates.

Still got questions?

Below are some FAQs that might help.

Do I need to enter MFA access code for sign-in while I am on Macquarie University campus?

MFA will not be required when you are on the Macquarie University campus network.

What do I need to setup MFA?

  • your active student One ID and password
  • a laptop or desktop computer to setup your MFA. (Don't attempt the MFA setup steps on your smartphone, as you will need your smartphone to scan the QR code).
  • smartphone with one of the favourite authenticator apps installed (these are free to download from the iOS App store or Google Play).

Can I use any authenticator app on my mobile phone?

It is recommended to use one of the below suggested authenticator apps:

  • Okta Verify
  • Google Authenticator
  • Authy
  • Microsoft Authenticator

Once I have setup MFA successfully, what is required to login back into iLearn or eStudent?

Once you've set up Multi-Factor Authentication (MFA) and have registered an authenticator app like Okta Verify, Google Authenticator, Authy, or Microsoft Authenticator, using MFA follows these steps if you are outside the MQ University campus network:

  1. Login as Usual using your MQ student ID and password.
  2. Prompt for MFA Code: you'll be prompted to enter your MFA code, which is a 6-digit code.
  3. Open Your Authenticator App: On your phone or other device where your authenticator app is installed, open the app.
  4. Find Your Code: Inside the authenticator app, you'll see a list of accounts you've set up for MFA. Find the code that corresponds to your MQ university student account. Enter the 6 digit code from the mq.okta.com account
  5. Enter Your Code: Go back to the iLearn or eStudent page you are attempting to login, where you see the MFA prompt and enter the 6-digit code from the authenticator app & submit. If you enter a wrong 6-digit code 5 times, your account will get locked, so please make sure you enter the correct code.

Remember, the MFA codes generated by the app are time-sensitive, so they need to be entered fairly quickly after they're generated. If you enter a code and it doesn't work, it might have expired. If that happens, simply use the new code the app generates.

Can I add a second mobile device as a secondary authenticator? OR
Can I use more than one device or app to generate OTPs?

Yes, you can enrol multiple devices or authenticator apps to generate OTPs. This can be helpful in case you lose access to one of your devices.

How do I change or reset my MFA method?

Please see the section below for detailed instructions on how to update your MFA method.

What should I do if I have lost my phone or MFA enabled device?

If your phone has been lost, stolen, transferred to someone else or replaced with a new phone, then you will need to deregister your old device before you can register a new device. To do this, contact the Macquarie IT Service Desk (02) 9850-HELP (02-9850-4357) and advise them you need to deregister a device from Okta MFA.

I don't have a mobile phone or tablet OR my phone only makes calls, it doesn't run Android or iOS

Currently, we only support Android & iOS based mobile devices, Authy on desktop for receiving the 6-digit OTP. Authy desktop setup guide (requires login to OneHelp).

If you need further assistance on current methods available for MFA, you can contact the Macquarie Service Desk (02) 9850-HELP (02-9850-4357) or email IT Service Desk at help@mq.edu.au.

Do I have to wait for the next OTP code to be generated on the authenticator app, if the time is running out on the current OTP displayed?

No, the system we are using will accept either of the two most recent codes generated on your authenticator app. If you've typed in the 6-digit OTP code but then a new code appears on your phone, you should still be able to log in.

Can I use a desktop or laptop to give me the 6-digit OTP instead of a mobile phone-based app?

Yes, Authy is also available on desktops. Authy offers a desktop application that supports the following operating systems:

  • Windows: Authy is compatible with Windows 7 and later versions.
  • macOS: Authy supports macOS 10.12 (Sierra) and later versions.
  • Linux: Authy provides a desktop app for Linux distributions, such as Ubuntu, Fedora, and Debian.

By using Authy on your desktop, you can generate OTPs even when your smartphone is not available. To download the Authy desktop app, visit the Authy website (https://authy.com/download/) and choose the appropriate version for your operating system. You can follow the Authy desktop setup guide (requires login to OneHelp).

I am currently not in Australia. Will I be able to use MFA while overseas?

Yes, you can use any of the recommended authenticator apps installed on your smart phone to setup & use MFA from overseas.

My phone is a personal one, and I don't want the University to have my personal phone number.

Your phone number isn't requested or used in MFA, and the University has no way of accessing your number through MFA. In fact, MFA will work fine with a WiFi-only tablet that doesn't have a phone number.

My phone is a personal one, and I don't want to use my data for MFA?

The only time you'll need data for MFA is to download one of the Authenticator apps once when you register for MFA (if it wasn't installed already). If you want, you can do this at home over WiFi, or over the University's WiFi (Macquarie OneNet or Macquarie Public). Once it is installed, using your device to get the 6-digit OTP/code doesn't use any data.

When I enter the 6-digit OTP during login, I get error message “Your code doesn't match our records. Please try again."

Make sure that the time and date on your phone is correct. If the time is too far different, then the codes you see will be different to the ones you should get.

You might want to check your phone's time zone too, particularly if you are currently travelling or have recently travelled to somewhere in a different time zone.

If all these steps don't work, please reset your MFA by following instructions on “Changing or resetting your MFA method?” below.