Answer:

Multi Factor Authentication (MFA) refers to an additional layer of security that's added to the login process.

MFA relies on two forms of authentication: something you know, and something you have with you. The something you know is your password. The something you have with you can be a mobile device. This means that even if your password is hacked, your account will remain secure. 

Answer:

Cybercrime continues to rise and as a result it's increasingly important that your personal information and data is protected. MFA is being implemented to do exactly this, using a widely utilised security tool, to keep personal data secure.

Teachers' Pensions MFA adds an extra validation step after a username and password has been entered, making it significantly more difficult for hackers to access our tools and systems. This extra protection is needed because of the increasingly sophisticated levels of attacks used by hackers to gain access to online services.

Answer:

We'd recommend using a mobile device with Authenticator App but you only need access to an email address to use MFA.

Answer:

No. But we do recommend the installation of an Authenticator App as it offers the highest levels of account protection.

Answer:

Yes. MFA offers additional levels of security over a static PIN and enhances the safety of your account. We recommend the installation of an Authenticator App as it offers the highest levels of account protection.

Answer:

In addition to MFA codes, important messages may be sent to your number. All your data is handled in accordance with our privacy policy.

Answer:

Yes. You can log in with MFA on desktop, tablet or mobile.

Answer:

No, to register for Multi Factor Authentication your mobile number must begin with 07.

Answer:

We started using MFA on 10 May 2022.

Answer:

The Authentication App is the most secure method. One-time passcodes delivered via email or SMS text messages are less secure. This is because email credentials can be compromised, and text messages can be intercepted. It's a lot harder for hackers to get control of an actual mobile device with an App than it is to infiltrate an email account or hack a phone number.

Answer:

You can use any Authenticator App that generates temporary codes based on time-based one-time passwords (TOTP). There are lots of free and paid Authenticator Apps to choose from. Widely-used options include Google Authenticator, Microsoft Authenticator, and Authy.

We’ve been made aware of an issue which is affecting some Apple users when using Google Authenticator. If this is the case, please try an alternative App or MFA method.

We highly recommend that users set up a PIN or biometric requirement on their mobile device.

Answer:

To be able to log in to My Pension Online you need an email address. We recommend selecting 'email address' as the MFA method if you don't have access to a mobile device. 

Answer:

Time-based one-time passcode (TOTP) authenticator Apps, like Google Authenticator™, Microsoft Authenticator™, or Authy™

Answer:

Yes. MFA is required for all member accounts.

Answer:

Once MFA has been activated it can't be removed from your account.

Answer:

MFA codes are valid for 15 minutes.

Answer:

You can remain logged in for 20 minutes when inactive. After this time, you'll be logged out for account security.

Answer:

Log in to your My Pension Online account and click 'Your Details'.

Answer:

Log in to your My Pension Online account and click 'Your Details'. Changing your email address will also update the login name used to log into this website.

Answer:

A Passcode is randomly generated every time you log in. A PIN is used if Multi Factor Authentication isn't active on your account and remains the same each time.

Answer:

If you didn't receive your six-digit code via SMS, check that the mobile phone number you provided is correct. If it is, make sure you've got a phone signal. If you still aren't receiving the messages, check with your service provider to confirm that messages aren't getting blocked. If you still can't access your account, please contact us via Secure Chat or on 0345 6066166.

Answer:

Yes. Please restart the log in process to request another code.

Answer:

First check to see if you can restore settings if you install the App again. Some Authentication Apps will allow you to restore from the cloud. If you're unable to restore, contact us via Secure Chat or via our helpline on 0345 6066166.

Answer:

This is usually caused by your email service marking the authentication code emails as spam. Please check your junk folder and make sure it's the correct email address.

You should also go into settings and add our name ‘Teachers’ Pensions’ at noreply@mail.teacherspensions.co.uk to your trusted domain list

If you still can't access your account, please contact us via Secure Chat or via our helpline on 0345 6066166.

Answer:

You can change your Multi Factor Authentication method via My Pension Online. If you're unable to access your MFA details contact us via Secure Chat or via our helpline on 0345 6066166.

Answer:

No. All members are required to have their accounts protected with Multi Factor Authentication.

Answer:

If you’ve lost or damaged the phone you used to set up MFA, you can still log in to your account.

You just need to contact us via Secure Chat or via our helpline on 0345 6066166.

Answer:

If you’ve replaced the phone you used to set up MFA, you can still log in to your account. If you have the same phone number and are using SMS nothing will change. If you're using an Authenticator App please follow the migration instructions from the old device to the new device.
Still having trouble? Contact us via Secure Chat or via our helpline on 0345 6066166.

Answer:

Once you’ve logged in your code will last for two hours. After this time, you'll need to generate a new code. Please tick the remember me box to enable this feature.

Answer:

A password manager plays an important role in your account security, but it's not a substitute for MFA. Password managers help drive good password practices. You can use this type of tool to ensure that you create strong and hard-to-predict passwords, don't reuse passwords, and change passwords on a recommended schedule. Even strong passwords aren't sufficient protection against unauthorised account access because they can be compromised by common threats like phishing attacks, credential stuffing, and malware. Password managers don't provide the enhanced login security that you get with MFA.

Answer:

No. However you can change your MFA method if you want to.

Answer:

If you're unable to log in due to the issues, please contact us via Secure Chat or via our helpline on 0345 6066166.