General MyWisconsin ID Background FAQs

What is MyWisconsin ID?

MyWisconsin ID is the foundation for secure connections between people and technology.  MyWisconsin ID is a platform that securely connects employees, partners, and customers to the applications and tools they need in a single sign-on format.

You can go to the MyWisconsin ID Self Registration page.

How do I change my password?

You can access the MyWisconsin ID Account Management Quick Reference Guide.

How do I unlock my MyWisconsin ID account?

You can access the MyWisconsin ID Account Management Quick Reference Guide.

What do I do if I forget my password?

You can access the MyWisconsin ID Account Management Quick Reference Guide.

Accessing the MyWisconsin ID Dashboard FAQs

How do I sign into MyWisconsin ID?

Login to apps.wisconsin.gov​.  You can watch this short video on how to get started with MyWisconsin ID.

Navigating the MyWisconsin ID Dashboard FAQs

You can learn more customizations on your MyWisconsin ID dashboard.

Why does my MyWisconsin ID session expire but some of the apps are still open?

When you're logged out of your MyWisconsin ID session, MyWisconsin ID doesn't automatically log you out of your applications. Your apps have their own session lifetime which they determine, or you can manually log out of them when you're finished.

Managing Passwords/Accounts FAQs

How do I change my password?

To change your MyWisconsin ID password, log in to your MyWisconsin ID account. Click Settings on the left panel of your dashboard. Please refer here for additional, detailed MyWisconsin ID Account Management information.

In the Change Password section, enter your current password and the new password you've chosen. Make sure your password meets the complexity guidelines set by your admin. Click Change Password and you're good to go.

How do I unlock my account?

If you're locked out of your account (but still remember your password), click the Need help signing in? link at the bottom of the sign-in page. Then click Unlock account to unlock it.

​What do I do if I forgot my password?

If you've forgotten your password, click the Need help signing in? link at the bottom of the sign-in page. Then click Forgot password to reset it.

Access to Intergrated A​pplications

​ How can users access MyWisconsin ID-integrated applications?

Users can directly go to the application they want to access using application URL, and then the application may or may not redirect the user to MyWisconsin ID login page depending on whether they have a valid session or not. ​
 

What is Single Sign-On (SSO)?

Single sign-on allows users to log in one time, using a single ID and password to access several software systems without re-entering their log-in each time.

How does SSO work?

With SSO, you sign in to your company's MyWisconsin ID Dashboard. MyWisconsin ID manages all your application credentials and securely logs you into your apps. Sometimes, you might not even know what your username and password are for certain apps because your IT team will manage all of that for you in the background.

How does MyWisconsin ID keep my username and password secure?

MyWisconsin ID provides rigorous security measures and controls to protect your information. This includes securing and verifying all communications with MyWisconsin ID, encrypting customer data, and ensuring that only the right people in your organization can control the MyWisconsin ID service. These controls are audited regularly.

What is my username and password for MyWisconsin ID?

Your username and password are a pair of credentials that you use to log in to the MyWisconsin ID dashboard. ​If you've forgotten your password, click the Need help signing in? link at the bottom of the sign-in page. Then click Forgot password to reset it.​

General MFA Background FAQs

What is Multi-Factor Authentication (MFA)?

Multi-factor authentication (MFA) strengthens account security by requiring two factors to verify your identity. These factors usually include something you know (like a username and password) plus something you own (like a smartphone). MFA protects against phishing, social engineering, and password brute-force attacks and secures your logins from attackers exploiting weak or stolen credentials. With MFA, your password alone is no longer enough to access your account, dramatically improving account security.​

What is a security “factor"?

The “factor" in MFA refers to a method of verifying your identity. The most basic type of factor is your password, which is often the primary, or initial authentication factor you'll be prompted for. Your organization may choose to ask for more factors to complement your password. These additional factors could range from an app on your phone that generates a code for you to enter after you've typed in your password, to a USB key you have to insert into your computer, or even a fingerprint scan.

Why is MFA required?

MFA is an effective way to provide enhanced security. Traditional usernames and passwords can be stolen, and they've become increasingly more vulnerable to malicious activity, and cyber attacks like phishing or brute force attacks. MFA creates multiple layers of security to help increase the confidence that the user requesting access is actually who they claim to be. ​​Reports show that applications and identities are the initial targets in 86% of breaches. It has become a necessity to protect our applications and identities through a second layer of security.

Why isn't primary authentication enough, what's wrong with passwords?

• One set of login credentials (such as username and password) is not solving important access challenges. 
• Passwords, in addition to being difficult to manage, are vulnerable to a variety of attacks like phishing, social engineering, etc.
• By boiling all applications down to one username and password, security strength is only as strong as that one set of credentials. If it's a bad password, your security situation hasn't improved.
• If hackers get a hold of a user's login credentials, they can access all of the user's resources. This is especially a threat if that user has access to privileged information or mission-critical data.
  
   

What are the benefits of MFA?

• Lower the chances of end-user identities (and, subsequently, their IT resources) becoming compromised.
• Even if hackers have a user's password, we can stop them by adding a personal, time-sensitive factor to the authentication process.
• Peace of mind for enterprise, knowing that users sensitive data is made safer by an additional security layer.
• MFA also adds a sense of mindfulness to authentication. By taking the time to add their second factor, users are reminded of the importance of tight identity security.
  
   

MyWisconsin ID-Specific MFA Product FAQs​

How does MyWisconsin ID keep MFA factors secure?

MyWisconsin ID encrypts your user credentials using two different software locks called keys. It stores user data and the keys used to unlock that data in separate databases. For extra security, it then encrypts the keys in three different ways for even stronger protection. No one person at MyWisconsin ID can access the encrypted master key, and MyWisconsin ID maintains an audit trail to show how it manages the keys.

Which MFA factors does MyWisconsin ID support? 

MyWisconsin ID supports a number of factors: passwords, login codes sent via mobile apps or SMS, push notifications (Okta Verify with Push), email, plug-in and wireless-enabled hardware keys, and biometrics (Windows Hello, Apple TouchID).​

What is Okta Verify?

Okta Verify is a mobile application from Okta that can be used to verify a user for MFA purposes. You receive a push notification on your mobile to confirm the second factor after the factor is set up.  Please refer here for additional, detailed Okta ​​Verify FAQs.

Do I need to set up MFA again if I registered previously?

No. Once done or configured, you need not set up a factor again.

Can I turn off MFA?

MFA is enabled and enforced on all accounts. Multiple MFA methods are enabled for users to enroll in MFA, including MyWisconsin ID Verify, Google Authenticator, FIDO2, and SMS. Users can choose which MFA methods they choose to enroll with. That lets you choose the factor that best suits your working style. Are you constantly checking your phone? Then MyWisconsin ID Verify may be the right factor for you.​

MyWisconsin ID-Specific MFA Product How-To/Troubleshooting FAQs

How do I set up and register my MFA?

1. User accesses Application / MyWisconsin ID Dashboard
2. User is redirected to MyWisconsin ID login page
3. User submits username and password
   
4. User is successfully logged in
   
5. User is prompted to enroll in MFA factors
6. User enrolls in 1 or more factors
7. User redirected to Application / MyWisconsin ID Dashboard

How do I register a new device for MFA?

To register a new device you need to reset your MFA and then set it up again with the new device.

How do I reset my MFA?

1. Go to your MyWisconsin ID Dashboard, where you'll be redirected to the MyWisconsin ID login page
2. Submit your username and password
3. If prompted, add your second factor for authentication
4. Once you're logged in, go to the Settings page, and click on Edit Profile
5. For security, you'll be prompted to provide your password and/or second factor
6. Click Remove for factor to reset
7. Click on Set up for factor you wish to reset
   
    

What can I do if I am stuck on the “Enrolling Your Device" screen on the phone I want to use for MFA?

If you get stuck in a loop when attempting to register via SMS/Email/QR code, or you are not getting any code to enter or any push notification, it means your device may not have enrolled correctly. In this case, you need to reset MFA from your account, uninstall MyWisconsin ID Verify on the device, install it again, and then set up the MFA again.