Daily Multifactor Authentication is Coming in January 2023
On January 23, 2023, we’re making changes to the multifactor authentication (MFA) process for accessing Freddie Mac applications to provide even greater protection for your data.
We’re constantly looking for ways to enhance our security standards. To add an additional layer of security to all Freddie Mac tools and technology systems, we implemented MFA earlier last year – a process by which users accessing our systems use two or more factors to authenticate themselves. Both factors are unique to the user, making it more difficult for unauthorized users to access data. Now, we're making changes to further strengthen this process.
Currently, we employ a monthly MFA process – meaning you need to authenticate every 30 days. But beginning on January 23, 2023, we’ll change to daily MFA – meaning you’ll need to authenticate every 24 hours.
What Can I Expect?
The current MFA process doesn’t change, you’ll just need to authenticate more often – which means greater security for your account and data.
Each day when you access a Freddie Mac system, you’ll request a one-time passcode be sent to one of your preferred devices (e.g., text, phone call, email). After verifying the passcode to authenticate yourself, you’ll be able to access your account. If you log out and want to access your account later that day, you won’t need to authenticate again. However, if you want to access your account the following day (24 hours later), you’ll need to authenticate again.
NOTE: MFA does not apply to system-to-system (S2S) accounts. Additionally, if your organization has user interface accounts that do not have immediate access to an email or text message (for example, robotic process automation (RPA)/bot accounts), those accounts will not be impacted at this time either.