[Important] Mandatory Multi-Factor Authentication for keio.jp

📢 Introduction

This is an important security announcement for all keio.jp users (excluding Alumni and Guarantors).
To protect against the increasing risk of unauthorized access, Multi-Factor Authentication (MFA) will become mandatory for logging into keio.jp.
As a result, you will no longer be able to sign in using only your Keio ID and password. We appreciate your cooperation in maintaining a secure environment.
※If you reach the mandatory implementation date without setting up multi-factor authentication, you will be redirected to the setup screen during subsequent keio.jp logins and will be unable to log in until setup is complete.

(Reference) Multi-factor authentication setting count data 

🗓️ Schedule

Faculty:
・The start date for mandatory multi-factor authentication:
    Monday, June 1, 2026
・Key services that will become unavailable if not configured
    ・Syllabus
    ・K-LMS
    ・K-RIS
    ・Keio Mail (Gmail) and other Google Workspace services
    ・Personnel Procedures System
        etc

Please refer to the following manual to complete the setup and begin using the service well in advance of the deadline.
(Depending on the settings and processing status for each day, it may take some time for the mandatory changes to be fully reflected.)

Enhancement of "Passkey" Support and Changes to Screen UI/Terminology:

・Scheduled Date: Early June 

・Update Details:

　・New "Sign in with a passkey" Button
　　A button will be added to the sign-in screen, allowing instant access via your device's biometrics.
　　Before: Start by entering your Username.
　　After: "Sign in with a passkey" button will be displayed at the top.

　　Note: Prior registration of a passkey (biometric authentication) is required. Please refer to the "keio.jp MFA Biometric Authentication Setup Guide" and complete your registration in advance. 

　・Terminology Update (Sign-in Screen)
　　The authentication method selection will be simplified.
　　Before: Security Key or Biometric Authenticator
　　After: Passkey

　・Settings and Dashboard Updates
　　Terminology in the settings menu will be updated to "Passkey."

　　[Note on Display Names]
　　Due to system specifications, the display name varies depending on the registration status:
　　・ Unregistered or after deletion: Displayed as "Security Key or Biometric Authenticator."
　　・ Registered: Displayed as "Passkey".

　　　*By default, Okta displays the name it recognizes (e.g., Google Password Manager, Windows Hello Hardware Authenticator, iCloud Keychain, etc.).

　　　 To make it easier to identify your devices, we recommend setting a nickname for each passkey.

Now required 

Students(Regular Programs):Monday, February 9, 2026

Students(Correspondence Course Students ):Friday, May 1, 2026 

Staff:Tuesday, May 12, 2026

🔐 What is Multi-Factor Authentication (MFA)?

MFA adds a second verification step using your smartphone, in addition to your traditional password.
Think of it as adding a second lock to your front door.
Even if someone steals your password, they cannot login without the "second key" (your smartphone), drastically improving security.

Request for Multi-Factor Authentication (MFA) Registration

To enhance security, please register your authentication factors for Multi-Factor Authentication (MFA).

We strongly recommend registering two or more authentication methods to ensure you can still access your account in the event of device loss or hardware failure.

Recommended Methods:

• For Backup/Recovery: Phone (SMS or Voice).

• For Daily Use (Smartphone): Biometrics (Passkey) or the Okta Verify app.

• For Daily Use (PC): Biometrics (Passkey).

To set up your Multi-Factor Authentication, please refer to the "keio.jp Multi-Factor Authentication Setup Manual"

📞 Regarding Phone Number Registration 

To enhance security, multi-factor authentication (MFA) will be mandatory for all students, faculty, and staff at keio.jp starting June 1, 2026.

In line with this, we are reviewing the routine use of "Phone (SMS/Voice Call)," which may be deprecated or discontinued in the future.

Phone-based authentication (SMS/Voice Call) carries risks such as interception of verification codes and unauthorized call forwarding. In recent years, migrating to more secure authentication methods has been highly recommended.

Okta, the provider of the keio.jp authentication infrastructure, also deprecates phone factors (SMS/Voice Call) and recommends the use of passkeys and other secure methods.

If you currently use "Phone (SMS/Voice Call)" as your primary MFA method, please register an additional "Passkey" or "Okta Verify" as soon as possible and migrate your login procedure.

As of May 2026, "Phone (SMS/Voice Call)" remains available as a backup for situations such as device replacement or hardware failure.

What Is SMS Authentication and Is It Secure?

https://www.okta.com/blog/identity-security/sms-authentication/

Note: For users staying overseas (e.g., studying abroad)

• Multiple phone numbers can be registered simultaneously, including international numbers. However, due to the specifications of the SMS/Voice authentication system used by Okta, authentication codes may not be delivered to phone numbers outside of Japan (+81). In such cases, the registration process will not be completed successfully.

• If you do not receive an authentication code within approximately 3 minutes during registration, that phone number may not be compatible with SMS/Voice authentication. If this occurs, please ensure you register multiple alternative authentication factors (such as Passkeys or Okta Verify) to prepare for risks such as device malfunction or loss.

✨ Go "Passwordless" for Convenience
You might think, "Authenticating twice every time seems troublesome."
By setting up the recommended Passwordless method, you can skip entering your password entirely.
Log in securely and easily just by tapping your phone or using Face/Fingerprint ID.

✅ Recommended Methods (Choose one)

① Okta Verify App
    Install the app on your smartphone to use “Face ID” or “Touch ID.” No more password entries!
    You can also use the authentication method where you check and tap notifications sent to your phone.

② Passkey
    Use your device's Face ID or Fingerprint auth. No password typing needed!

For details about Passkey, please see below.
What is passkey authentication?（MACNICA）

📖 Multi-Factor Authentication Setup Procedure

If you need to set up multi-factor authentication, please refer to the "keio.jp Multi-Factor Authentication Setup Manual" 

❓Frequently Asked Questions (FAQ)

For frequently asked questions (FAQ) about multi-factor authentication, please refer to the following page.

・About keio.jp Multi-Factor Authentication (MFA) - Frequently Asked Questions (FAQ)