 |
Page History
After receiving confirmation from CTRP Support that your Okta account has been created, you will need to configure your Okta account to access CTRP. This includes setting your password and setting up multifactor authentication.
Include Page Okta account Creation - Include 20210107 Okta account Creation - Include 20210107
Note: For NIH users (anyone with an e-mail address that ends in "@mail.nih.gov") Okta has been directly connected to iTrust. You will not need to follow all the steps below. Once you have entered your email address on the CTRP log-in screen, you will be directed to iTrust for authentication and redirected to the site once completed.
First-Time Login and Set-up Steps
Upon initial login to CTRP, you will be required to answer a few security related questions for identification verification purposes. Detailed description of the steps that will be necessary are below.
To access CTRP:
...
● Okta Verify - "Use a push notification sent to the mobile app."
● SMS Authentication - "Enter a single-use code sent to your mobile phone."
● Voice Call Authentication - "Use a phone to authenticate by following voice instructions."
...
Two Factor Method: Okta Verify
...
Clicking on this choice brings up the “Setup Okta Verify” window. In this window, “Select your device type” by clicking the icon that matches the brand of mobile phone that you will be using. (If you would like to go back and choose a different authentication method, click on “Back to factor list” located in the bottom left-hand corner of the center window.)
...
When you click on the brand icon, the window will expand at the bottom to display instructions to “Install Okta Verify”.
...
Okta Verify is a mobile app that needs to be downloaded to your cell phone. The window contains a link to your cell phone brand’s app store page for Okta Verify. This will allow you to easily identify Okta Verify in your app store to download on your cell phone.
...
Once the app is downloaded, click on the blue “Next” button on your computer and tap on the “Add Account” button in your cell phone app. (If asked, allow the app to access your cell phone camera and allow it to send push notifications).
...
The Okta app will open a camera screen, and your computer screen will display a QR code (square-shaped barcode).
...
Point your cell phone towards your computer screen and align the cell phone camera display with the square of the QR code.
...
The Okta Verify app will scan the QR code and connect your cell phone to your Okta account. You will see a new entry in the connections list in your cell phone app.
...
On your computer, you will be directed back to the “Setup Multifactor Authentication” screen.
While initially you will be logged into your account following these steps, the next time you log into your account, you will be using a “push” to authenticate. Please take note of the following steps:
● When you enter your username and password, you will see a window for Okta Verify with a button to “Send Push”. Click on this button and a “push” pop-up alert will be sent to the app on your mobile phone asking you to approve the connection.
● Tap on the “Approve” button to authenticate.
● Following the authentication, the application will load.
● The next time you log in to the application, an Okta Verify window will appear asking whether to send a push to the phone number on record.
● Click to proceed with the push, then tap on “Approve” in the popup alert from the Okta Verify app.
...
Return to Step 8 in “First-Time Login Steps” to finish setup.
Two-Factor Method: SMS Authentication
...
Two Factor Method: Voice Call Authentication
Clicking on this choice brings up a window that allows the user to set up their account to “Follow phone call instructions to authenticate”.
Use the dropdown picklist to choose the country of your location (United States is selected by default). The choice of country automatically populates the appropriate country code prefix for the Phone number text box.
Enter the phone number of the mobile phone that you would like to use. Fill in your extension in the “Extension” textbox, if applicable.
Next, click on the blue ‘Call’ button. (If you would like to go back and choose a different authentication method, click “Back to factor list” located in the bottom left-hand corner of the center window.)
Next, a phone call will be initiated to the phone number provided with a recorded message. Follow the instructions on the message, then hang up.
Following the authentication, CTRP STRAP will load.
The next time you log in to CTRP STRAP, a Voice Call window will appear asking to approve a phone call to the number provided (With the exception of the last 4 digits, the number will be masked).
Click to approve the phone call, then answer the phone call and follow the instructions.
Return to Step 8 in “First-Time Login Steps” to finish setup.
Two-Factor : Multiple Methods
It is possible to set up more than one of the authentication methods. While only one method is needed for each login, and each type authentication may only be associated with one phone number, this configuration allows some flexibility for users who want the option of using two different phone numbers.
Here are some examples of how this might be used:
- Okta Verify Authentication (cell phone), Voice Call Authentication (office phone).
User sets up Okta Verify authentication to send pushes to their cell phone and sets up Voice Call Authentication to their office phone number. If the user does not have cell service in their office, they can use their office phone to authenticate, and they can authenticate via Okta Verify push on their cell phone if they are away from their office.
- SMS Authentication (personal cell phone), Okta Verify Authentication (work cell phone).
User sets up Okta Verify Authentication to send pushes their company-issued cell phone and sets up SMS Authentication to their personal cell phone. The user does not wish to install an app on their personal cell phone, but would like to have a backup method of authentication in case of any changes to their work cell phone number.
- Okta Verify Authentication (cell phone), SMS Authentication (cell phone), Voice Call Authentication (office phone).
User wishes to have several methods for authentication, especially since their day-to-day schedule is extremely varied. This allows the user to choose the method that best suits their situation at login time.
Determine the configuration that best fits your situation and decide which of the authentication methods that you want to use and which phone number you want to use with each.
Follow the earlier instructions in this document for the first login. When you get to the point of choosing an authentication method, select the first method on your list. Follow the instructions in this document for that method and connect it to your chosen phone number and complete the verification.
Before logging in completely, click on “Back to factor list” in the lower left-hand corner of the window that indicates going back to the selection screen.
Choose the next authentication method on your list and follow the instructions for that method.
If you would like to choose a third method, click on “Back to factor list” in the lower left-hand corner to go back to the selection screen. When you have completed all setup configurations, you may log in to CTRP STRAP.
Return to Step 8 in “First-Time Login Steps” to finish setup. Note that if you have set up all 3 methods, you will not be routed back the “Setup multifactor authentication window”; instead you will need to set up your security question and then you will be logged in to CTRP STRAP.
Note: The next time you log into the application, one of the authentication methods will be selected by default, but you may choose another method you have set up. Click on the down-arrow icon next to the Okta symbol in the window and choose a different authentication method from the picklist.
