After receiving confirmation from CTRP Support that your Okta account has been created, you will need to configure your Okta account to access CTRP. This includes setting your password and setting up multifactor authentication.

Creating your Okta account:

1. In the email notification received from Okta, select the "Active Okta Account" button. This will launch the Okta account creation page.
   
   
   
2. On the account creation page, follow the steps to create your password and choose your security image. Select the "Create My Account" button.
   
   
   
3. The Okta “Set up multifactor authentication” window launches next displaying the three multifactor authentication methods available:
   

   ●     Okta Verify - "Use a push notification sent to the mobile app."     

   ●     SMS Authentication - "Enter a single-use code sent to your mobile phone."

   ●     Voice Call Authentication - "Use a phone to authenticate by following voice instructions."

   
   
   
4. Choose the method you would like to use by clicking the "Setup" button directly under your choice.

Setting up Okta multifactor authentication:

The following sections of this document define the steps needed for each of the different methods. Please see the section that correlates to your authentication choice.

Note: You may choose more than one authentication method. For example, this provides you the opportunity to connect your account with your mobile phone (Okta Verify app) and your office phone (Voice Call Authentication), even if they are two different numbers. Please see the section entitled “Two Factor Option: Multiple Methods”. 

Two Factor Method: Okta Verify

1. Selecting this option launches the “Setup Okta Verify” window. In this window, “Select your device type” by clicking the radio button that matches the brand of mobile phone that you will be using. You will then be prompted by Okta to download the Okta Verify app. (If you would like to go back and choose a different authentication method, click on “Back to factor list” located in the bottom left-hand corner of the center window.)

   
   
   
   
   

2. Okta Verify is a mobile app that needs to be downloaded to your mobile phone. The window contains a link to your mobile phone brand’s app store page for Okta Verify. This will allow you to easily identify Okta Verify in your app store to download on your mobile phone.

   
   

3. Once the app is downloaded, click on the “Next” button on your computer and tap on the “Add Account” button in your mobile phone app. (If asked, allow the app to access your mobile phone camera and allow it to send push notifications).

4. The Okta app will open a camera screen, and your computer screen will display a QR code (square-shaped barcode).

   
   

5. Capture the QR code with your mobile phone.

6. The Okta Verify app will scan the QR code and connect your mobile phone to your Okta account. You will receive an 'Account Added' confirmation in the Okta app on your phone and a new entry in the connections list in your mobile phone app.

7. On your computer, you will be directed back to the “Set up multifactor authentication” screen.
   

8. Click on the "Finish" button or continue to setup additional multifactor authentication methods if desired.

   
   While initially you will be logged into your Okta account following these steps, the next time you log into your Okta account, you will be using a “push” to authenticate. Please take note of the following steps:

        ●     When you enter your username and password, you will see a window for Okta Verify with a button to “Send Push”. Click on this button and a “push” pop-up alert will be sent to the app on your mobile device asking you to approve the connection.

        ●     Tap on the “Approve” button to authenticate.

        ●     Following the authentication, the application will load.

        ●     The next time you log in to the application, an Okta Verify window will appear asking whether to send a push to the phone number on record. 

   ●     Click to proceed with the push, then tap on “Approve” in the popup alert from the Okta Verify app.

Two-Factor Method: SMS Authentication

1. Selecting this option launches the "SMS Authentication" window. (If you would like to go back and choose a different authentication method, click on “Back to factor list” located in the bottom left-hand corner of the center window.)
   
   
2. Use the dropdown picklist to choose the country of your location (United States is selected by default). The choice of country automatically populates the appropriate country code prefix for the Phone number text box.
3. Enter the phone number of the mobile phone that you would like to use and then click on the “Send code” button. 
   
   
4. Next, a text message with a code will be sent to the phone number provided, and you will see a text box on the screen.
   
   
5. Enter the code in the textbox and select the "Verify" button.
   
6. Click on the "Finish" button or continue to setup additional multifactor authentication methods if desired.
   
   While initially you will be logged into your Okta account following these steps, the next time you log into your Okta account, an SMS Authentication window will appear asking to approve the sending of a text message to the number provided (With the exception of the last 4 digits, the number will be masked).

Two Factor Method: Voice Call Authentication

1. Selecting this option launches the “Follow phone call instructions to authenticate” window. (If you would like to go back and choose a different authentication method, click on “Back to factor list” located in the bottom left-hand corner of the center window.)

2. Use the dropdown picklist to choose the country of your location (United States is selected by default). The choice of country automatically populates the appropriate country code prefix for the "Phone number" text box.

   
   

3. Enter the phone number of the mobile device that you would like to use. Fill in your extension in the “Extension” textbox, if applicable.

4. Click on the "Call" button.

5. A phone call will be initiated to the phone number provided with a recorded message. Enter the code given and click the "Verify" button.

6. Click on the "Finish" button or continue to setup additional multifactor authentication methods if desired.
   
   While initially you will be logged into your Okta account following these steps, the next time you log into your Okta account, a Voice Call window will appear asking to approve a phone call to the number provided (With the exception of the last 4 digits, the number will be masked).

Two-Factor : Multiple Methods

It is possible to set up more than one of the authentication methods. While only one method is needed for each login, and each type of authentication may only be associated with one phone number, this configuration allows some flexibility for users who want the option of using two different phone numbers.

Here are some examples of how this might be used:

 - Okta Verify Authentication (mobile phone), Voice Call Authentication (office phone).

User sets up Okta Verify authentication to send push notifications to their mobile phone, and sets up Voice Call Authentication to their office phone number. If the user does not have mobile service in their office, they can use their office phone to authenticate, and they can authenticate via Okta Verify push on their mobile phone if they are away from their office.

 - SMS Authentication (personal mobile phone), Okta Verify Authentication (work mobile phone).

User sets up Okta Verify Authentication to send push notifications to their company-issued mobile phone, and sets up SMS Authentication to their personal mobile phone. The user does not wish to install an app on their personal mobile phone, but would like to have a backup method of authentication in case of any changes to their work mobile phone number.

- Okta Verify Authentication (mobile phone), SMS Authentication (mobile phone), Voice Call Authentication (office phone).

User wishes to have several methods for authentication, especially since their day-to-day schedule is extremely varied. This allows the user to choose the method that best suits their situation at login time.

1. Determine the configuration that best fits your situation and decide which of the authentication method(s) that you want to use, and which phone number you want to use with each.

2. When the Okta “Set up multifactor authentication” window launches, configure the desired multifactor authentication per the instructions above.

3. The next time you log into the application, one of the authentication methods will be selected by default, but you may choose another method you have set up. Click on the down-arrow icon next to the Okta symbol in the window and choose a different authentication method from the picklist.