Revise topic to Multi-factor Authentication (MFA)

[DukmakD]

Updated the title and content to provide information on Multi-factor Authentication (MFA) and its importance at Vrije Universiteit Amsterdam.

Pull Request Checklist

General Writing Standards

Voice and Clarity

• Text is primarily written in active voice
• Acronyms are written in full at least once on the page where they are used
• We refer to Handbook topics where possible (e.g. to the Handbook page about Yoda instead of some other information page about Yoda)

Links and Referencing

• All links use https:// protocol
• Links are descriptive (avoid "click here" links)
• For pages with a DOI, link through the DOI (e.g., https://doi.org/10.4444/xxxx)

Images

• All images have descriptive alt text

Tone and Style

• Avoid writing in the name of the handbook (no "we recommend")

Topic-Specific Standards

• Topics are nouns or noun phrases
• Topics are self-contained and concise
• Topics are title capitalized
• No include statements in topics
• Only use regular markdown (no special Quarto code)
• Where relevant, assign a suitable category

Guide-Specific Standards

• Guides are phrased as questions the reader will find answers to
• Where relevant, guides are assigned a suitable category

Checklist Usage

• Fill out this checklist when submitting a pull request
• Automated checks will verify some of these standards, but manual review is still crucial

Note to Contributors: Thank you for helping maintain the quality of our handbook!

[netlify]

✅ Deploy Preview for ub-open-handbook ready!

Name	Link
🔨 Latest commit	be23b2a
🔍 Latest deploy log	https://app.netlify.com/projects/ub-open-handbook/deploys/6a01a6717f6d5b0008fe26ac
😎 Deploy Preview	https://deploy-preview-828--ub-open-handbook.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.
Lighthouse	1 paths audited Performance: 90 Accessibility: 79 Best Practices: 100 SEO: 83 PWA: - View the detailed breakdown and full score reports

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[github-actions]

Summary

Status	Count
🔍 Total	0
✅ Successful	0
⏳ Timeouts	0
🔀 Redirected	0
👻 Excluded	0
❓ Unknown	0
🚫 Errors	0
Full Github Actions output

[github-actions]

Summary

Status	Count
🔍 Total	0
✅ Successful	0
⏳ Timeouts	0
🔀 Redirected	0
👻 Excluded	0
❓ Unknown	0
🚫 Errors	0
Full Github Actions output

[github-actions]

Summary

Status	Count
🔍 Total	0
✅ Successful	0
⏳ Timeouts	0
🔀 Redirected	0
👻 Excluded	0
❓ Unknown	0
🚫 Errors	0
Full Github Actions output

[github-actions]

Summary

Status	Count
🔍 Total	0
✅ Successful	0
⏳ Timeouts	0
🔀 Redirected	0
👻 Excluded	0
❓ Unknown	0
🚫 Errors	0
Full Github Actions output

[github-actions]

Summary

Status	Count
🔍 Total	1
✅ Successful	1
⏳ Timeouts	0
🔀 Redirected	0
👻 Excluded	0
❓ Unknown	0
🚫 Errors	0
Full Github Actions output

[github-actions]

Summary

Status	Count
🔍 Total	1
✅ Successful	1
⏳ Timeouts	0
🔀 Redirected	0
👻 Excluded	0
❓ Unknown	0
🚫 Errors	0
Full Github Actions output

[github-actions]

Summary

Status	Count
🔍 Total	1
✅ Successful	1
⏳ Timeouts	0
🔀 Redirected	0
👻 Excluded	0
❓ Unknown	0
🚫 Errors	0
Full Github Actions output

[github-actions]

Summary

Status	Count
🔍 Total	1
✅ Successful	1
⏳ Timeouts	0
🔀 Redirected	0
👻 Excluded	0
❓ Unknown	0
🚫 Errors	0
Full Github Actions output

[github-actions]

Summary

Status	Count
🔍 Total	1
✅ Successful	1
⏳ Timeouts	0
🔀 Redirected	0
👻 Excluded	0
❓ Unknown	0
🚫 Errors	0
Full Github Actions output

[peer35]

What are we trying to achieve with this page?

The page itself goes into specific MFA options used for VU provided tools. This is best explained on the SURF wiki: https://servicedesk.surf.nl/wiki/spaces/IAM/pages/198967497/Levels+of+Assurance

Specifically that 2 "Levels of Assurance" are in use at the VU:

• LoA 1.5 for MS Office apps, this is password + Azure MFA
• LoA 2.0 for some apps such as eduvpn and Yoda, called SURFsecureID. This is Password + SURFsecureID (Yubikey or Azure MFA), for which the user has to show an identity document at some point.

It's useful to know about this for us as support people, but I think it's too much information for researchers. On the other hand general info on what MFA means and why it's used is easily Googled. I would not make a topic page for this, we might include it in a glossary.

We do mention SURFsecureID in tools documentation, because it is not part of the enrollment process of students, they have to visit the servicedesk with their ID to activate SURFsecureID. It is part of enrollment for employees.