Okta is Here Banner
Overview

JMU Information Technology (IT) announces Okta, a modern, cloud-based, Identity and Access Management (IAM) platform that replaces Duo and also:

  • Manages all eIDs and passwords at JMU and provides secure access into every major system
  • Handles multi-factor authentication (MFA) through the Okta Verify app
  • Provides a jumping-off point to access many JMU systems (feature coming soon)
Differences between Duo and Okta
  • You only need to change your password once per year.
  • An app called Okta Verify replaces Duo Mobile.
  • SMS (text messages) are no longer accepted for authentication (see FAQ below).
  • A new password standard of at least 16 characters takes effect.
  • If you used a Duo D100 hardware token (D100), you must obtain a Yubikey.
How do I enroll in Okta?

Your invitation to enroll is an email in your JMU inbox with subject, "Welcome to JMU Okta!" The email contains an Activate Okta Account link, referred to below as your activation link. You must have at least one compatible device with you to begin enrollment. Most people enroll with a smartphone running iOS 17, Android 12, or newer. If you do not have a smartphone that can be updated to these specs, you must obtain a Yubikey hardware token. When ready, choose one enrollment method below.

Enroll from a Computer:

  1. Click the activation link in your invitation email. Misplaced the email, or link expired?
  2. Some people (applicants and some alumni) will be asked to set a password. If applicable, click Set Up and set your Okta password before proceeding.
  3. If you are enrolling a Yubikey, follow this link and complete these steps.
  4. To enroll a smartphone, click Set Up under the Okta Verify description.
    1. A QR code will appear. Keep this screen open.
    2. On your smartphone, download the Okta Verify app from the App Store (iOS) or Google Play (Android).
    3. Open the app, click Get Started, and click through the next two prompts.
    4. After clicking Add Account, select Organization (Work, school, company) as the Account Type.
    5. Skip Add Account from Another Device.
    6. On the Do You Have a QR Code? screen, click Yes, Ready to Scan.
    7. Scan the QR Code from the step above.
    8. Finish the Okta Verify setup process. JMU recommends that you Allow Notifications for push authentications.
  5. When you have enrolled at least one device, your Okta enrollment is complete.

Enroll from a Mobile Device:

  1. Download Okta Verify from the App Store (iOS) or Google Play (Android).
  2. From your invitation email, click your activation link. Misplaced the email, or link expired?
  3. Some people (applicants and some alumni) will be asked to set a password. If applicable, click Set Up and set your Okta password before proceeding.
  4. Click Set Up under the Okta Verify description.
  5. Select whether you want to be sent an email enrollment link or a text message enrollment link.
  6. When you receive your email or text message, click the enrollment link inside.
  7. Finish the Okta Verify setup process. JMU recommends that you Allow Notifications for push authentications.
Enrollment Schedule

All Phases are Complete.

Everyone with a JMU account has now been invited to Okta.

Missing your enrollment email?

Enroll now using the steps found on this page, and obtain a Yubikey if you don't have a compatible phone.

Looking for our simple enrollment steps?

Updated 3/14/2025

Related News
Okta Updates
Video Play Button Okta Updates
What is MFA or Okta?
Video Play Button Okta Intro Video
Okta Sneak Peek
Video Play Button Okta Sneek Peek
Need Help?

Information Technology Help Desk at (540) 568-3555, IT Service Portal or helpdesk@jmu.edu

Please also see the frequently asked questions below.

Frequently Asked Questions (FAQs)

Starting March 17, 2025, JMU eID holders will no longer be able to use text messages containing a one-time passcode for multifactor authentication. 

With Duo, users could receive a text message with a passcode as an alternative to receiving a Duo push notification to complete the authentication prompt. Okta does not support this type of authentication. Read more.

Most people (who already have an eID/password and have been using Duo)
You may still visit mylogin.jmu.edu and enter your credentials to begin enrollment, even if you do not have your activation link.

New applicants or alumni with only an email account
You must have a valid activation link to enroll. You may request a new activation link after clicking the expired one. If you have trouble with this, or if you have lost your email, contact the IT Help Desk to receive a new invitation email. 

To access JMU systems without a smartphone compatible with Okta Verify, you will need a device known as a Yubikey. Read more.
Please visit How to Obtain a Yubikey.

Yes, unless you request a change. Following Spring Break 2025, JMU will move to a revised eID format for all new users (new students, new employees, new affiliates). While the current eID format is based upon the user's name, the new eID will be randomized and non-identifiable. If you currently have an eID based on your name, you will not be required to change it. More information about the new eID format is coming soon.

Currently, eID change requests are on a pause due to Okta implementation. Following Okta go-live and a brief, subsequent testing period of the new eID change process, request processing will resume. Any individual who requests an eID change will receive a new eID in the new format (see previous FAQ question). Any eID changes are granted on a one-time, non-reversible basis and can be requested for any reason.

To request a new eID:

  • Employees, please contact the Office of Human Resources.
  • Students, please contact the Office of the Registrar.
  • Anyone with both jmu.edu and dukes.jmu.edu email addresses must request changes to both offices.

Related: University Policy 1345 Legal and Chosen Names 

If you report a legal name change to the University, you are not required to change your eID, nor does it happen automatically - a change must be requested.

There are several key benefits to the University using Okta, several of which are based around security and simplicity.

Okta provides a site (mylogin.jmu.edu) that serves as a central dashboard where you can manage your account from which you can access many JMU-specific sites (feature coming soon). This service minimizes the amount of times you need to log in and authenticate.

In addition, you will only have to change your password once per year!

Realizing the impact of this project, Information Technology carefully chose the Okta go-live date and vetted the timing with senior leaders across the UniversityAlternative dates were considered, but none presented fewer or less significant challenges than the chosen date. The choice of Spring Break 2025 attempts to minimize disruptions, allows a long enrollment window, and provides everyone an opportunity to get help between go-live and the resumption of classes.
Yes, on March 14th at 5:00pm ET, password changes will be disabled in MyMadison, and you will no longer manage your password there. Beginning March 17th at 8:00am ET, you will manage your JMU password through mylogin.jmu.edu.

Back to Top
Information Technology
Massanutten Hall
MSC 5733
1031 South Main Street
Harrisonburg, Virginia 22807