Overview
This article provides step-by-step instructions for signing in to Purdue’s VPN using Microsoft Multi-Factor Authentication (MFA). Following these steps ensures a secure connection to Purdue’s network resources while meeting university security requirements.
Instructions
How do I log in to the VPN with Microsoft MFA?
In the Cisco Secure Client, enter your VPN’s address and press Connect.
Enter your Purdue Career Account Username and password.
The next steps will depend on the default sign-in method that is set for your account at https://mysignins.microsoft.com/security-info. Please refer to the section: "How do I change my Default sign-in method?" if you need to change the setting.
App Based Authentication - Notification (Recommended):
If your default sign-in method is app based authentication - notification, you’ll receive this pop-up in Microsoft Authenticator:
Press Approve, and then you should get connected to the VPN.
App Based Authentication or Hardware Token - Code
If your default sign-in method is app based authentication or hardware token – code, you will be prompted with this screen after you enter your username and password:
If you are using the app, open the Microsoft Authenticator app and select your purdue.edu account. You will see a one-time password code displayed. Enter the code in the Answer field and press Continue to get connected to the VPN. If you are using the hardware token code, enter the 6-digit code displayed on the token in the Answer section.
Phone - Text - Phone Number
If you selected Phone – text – phone number, you will be prompted with this screen after you enter your username and password:
You will receive a text containing the 6-digit verification code from Microsoft. Enter this code in the Answer field and press Continue to be connected to the VPN.
Phone - Call - Phone Number
If you selected Phone – call – phone number, you will receive a phone call after you enter your username and password from a toll free phone number. The automated message will say
“This is Microsoft. If you are trying to sign in, press the # key to finish signing in.”
After you press the # key, the automated message will respond with “Your sign in was successful.”
You will then be connected to the VPN.
Supported MFA Methods
- Text message
- Phone call
- Notification via Authenticator app
- Code via Authenticator app
- Code via Microsoft-compatible hardware token (Feitian)
Unsupported MFA Methods
- Duo hardware tokens
- Security keys
- Bypass codes
- Temporary Access Passes (TAPs)
Important: If you don't have a compatible hardware token, you’ll need to purchase a new Microsoft-compatible token. Please see this article regarding obtaining Microsoft-compatible token (Feitian) Article - How do I obtain a physical ....
Still need help? Click the 'Purdue IT Request' button to start a ticket.