 |
Page History
Note: For NIH users (anyone with an e-mail address that ends in "@mail.nih.gov") Okta has been directly connected to iTrust. You will not need to follow all the steps below. Once you have entered your email address on the CTRP log-in screen, you will be directed to iTrust for authentication and redirected to the site once completed.
First-Time Login and Set-up Steps
After receiving confirmation from CTRP Support that your Okta account has been created. You will need to configure your Okta account to access CTRP. This will include setting your password and setting up multi-factor multifactor authentication.
To
...
configure your Okta account:
- You will receive an email notification from Okta, select the 'Active Okta Account' button which will launch the Okta account creation page.
- On the account creation page, follow the steps to create your password and choose your security image, then select the 'Create My Account' button.
- Navigate to the following URL (Need Prod URL) Click on the Acknowledge and Continue button on the login screen (verify if this page will still display for CTRP).
(Update Screenshot if this will still apply to CTRP) You will be taken to the CTRP Sign In screen. - Select the 'Need help signing in?' link. (Add Screenshot)
- Select 'Forgot Password', the 'Reset Password' screen will load.
- Enter your email address. Then click the 'Reset Via Email' button. If there is an Okta account with the email address you provided, an 'Email sent!' confirmation page will be displayed.
(Block out email address)
Note: If you are a NIH user, this will send you to iTrust. Follow that authentication to gain access to CTRP.
(Need to validate next steps, received an error message that this account can only be reset by an administrator)
Click the 'Reset Password' button in the email received from Okta, this will launch the 'Reset your Okta password' page
- The Okta “Set up multifactor authentication” window appears next. There are 3 choices, each with a ‘Setup’ button directly under the description of the method:
● Okta Verify - "Use a push notification sent to the mobile app."
● SMS Authentication - "Enter a single-use code sent to your mobile phone."
● Voice Call Authentication - "Use a phone to authenticate by following voice instructions."
- Choose the method you would like to use by clicking the ‘Setup’ button directly under your choice.
The following sections of this document define the steps needed for each of the different methods. Please see the section that correlates to your authentication choice. Note: You may choose more than one authentication method. For example, this provides you the opportunity to connect your account with your
...
mobile phone (Okta Verify app) and your office phone (Voice Call Authentication), even if they are two different numbers. Please see the section entitled “Two Factor Option: Multiple Methods”.
...
Once you have completed the setup for your chosen authentication method, click on the ‘Finish’ button.
...
Next, you will see a window asking you to choose a forgot password question. Please choose a question and enter your answer. This will only be used to verify your identity prior to starting the recover password process, if necessary
...
.
Two Factor Method: Okta Verify
Clicking on this choice brings up the “Setup Okta Verify” window. In this window, “Select your device type” by clicking the radio button that matches the brand of mobile phone that you will be using. You will then be prompted by Okta to download the Okta Verify app. (If you would like to go back and choose a different authentication method, click on “Back to factor list” located in the bottom left-hand corner of the center window.)
Okta Verify is a mobile app that needs to be downloaded to your mobile phone. The window contains a link to your cell mobile phone brand’s app store page for Okta Verify. This will allow you to easily identify Okta Verify in your app store to download on your cell mobile phone.
Once the app is downloaded, click on the blue “Next” button on your computer and tap on the “Add Account” button in your cell mobile phone app. (If asked, allow the app to access your cell mobile phone camera and allow it to send push notifications).
The Okta app will open a camera screen, and your computer screen will display a QR code (square-shaped barcode).
Point your cell mobile phone towards your computer screen and align the cell phone the phone camera display with the square of the QR code.
The Okta Verify app will scan the QR code and connect your cell mobile phone to your Okta account. You will see receive an 'Account Added' confirmation in the Okta app on your phone and a new entry in the connections list in your cell mobile phone app.
On your computer, you will be directed back to the “Setup Multifactor Authentication” “Set up multifactor authentication” screen.
- Click on the ‘Finish’ button.
While initially you will be logged into your account following these steps, the next time you log into your account, you will be using a “push” to authenticate. Please take note of the following steps:● When you enter your username and password, you will see a window for Okta Verify with a button to “Send Push”. Click on this button and a “push” pop-up alert will be sent to the app on your mobile phone device asking you to approve the connection.
● Tap on the “Approve” button to authenticate.
● Following the authentication, the application will load.
● The next time you log in to the application, an Okta Verify window will appear asking whether to send a push to the phone number on record.
● Click to proceed with the push, then tap on “Approve” in the popup alert from the Okta Verify app.
Return to Step 8 in “First-Time Login Steps” to finish setup.
Two-Factor Method: SMS Authentication
- Clicking on this choice brings up a window that allows the user to set up their account to “Receive a code via SMS to authenticate”.
- Use the dropdown picklist to choose the country of your location (United States is selected by default). The choice of country automatically populates the appropriate country code prefix for the Phone number text box.
- Enter the phone number of the mobile phone that you would like to use and then click on the blue “Send code” button. (If you would like to go back and choose a different authentication method, click “Back to factor list” located in the bottom left-hand corner of the center window.)
- Next, a text message with a code will be sent to the phone number provided, and you will see a text box on the screen.
- Enter the code in the textbox and submit it.
- Following the authentication, CTRP will load.
- The next time you login to CTRP, a SMS Authentication window will appear asking to approve the sending of a text message to the number provided (With the exception of the last 4 digits, the number will be masked).
- Check your cell mobile phone for the text message, then enter the code received on your phone into the textbox on the screen.
- Return to Step 8 in “First-Time Login Steps” to finish setup.
Two Factor Method: Voice Call Authentication
Clicking on this choice brings up a window that allows the user to set up their account to “Follow phone call instructions to authenticate”.
Use the dropdown picklist to choose the country of your location (United States is selected by default). The choice of country automatically populates the appropriate country code prefix for the Phone number text box.
Enter the phone number of the mobile phone device that you would like to use. Fill in your extension in the “Extension” textbox, if applicable.
Next, click on the blue ‘Call’ button. (If you would like to go back and choose a different authentication method, click “Back to factor list” located in the bottom left-hand corner of the center window.)
Next, a phone call will be initiated to the phone number provided with a recorded message. Follow the instructions on the message, then hang up.
Following the authentication, CTRP STRAP will load.
The next time you log in to CTRP STRAP, a Voice Call window will appear asking to approve a phone call to the number provided (With the exception of the last 4 digits, the number will be masked).
Click to approve the phone call, then answer the phone call and follow the instructions.
Return to Step 8 in “First-Time Login Steps” to finish setup.
Two-Factor : Multiple Methods
It is possible to set up more than one of the authentication methods. While only one method is needed for each login, and each type authentication may only be associated with one phone number, this configuration allows some flexibility for users who want the option of using two different phone numbers.
...
- Okta Verify Authentication (cell mobile phone), Voice Call Authentication (office phone).
User sets up Okta Verify authentication to send pushes to their cell mobile phone and sets up Voice Call Authentication to their office phone number. If the user does not have cell mobile service in their office, they can use their office phone to authenticate, and they can authenticate via Okta Verify push on their cell mobile phone if they are away from their office.
- SMS Authentication (personal cell mobile phone), Okta Verify Authentication (work cell mobile phone).
User sets up Okta Verify Authentication to send pushes their company-issued cell mobile phone and sets up SMS Authentication to their personal cell mobile phone. The user does not wish to install an app on their personal cell mobile phone, but would like to have a backup method of authentication in case of any changes to their work cell mobile phone number.
- Okta Verify Authentication (cell mobile phone), SMS Authentication (cell mobile phone), Voice Call Authentication (office phone).
...
