The University of Washington recently made an important security enhancement to Workday: all UW employees now use two-factor authentication (2FA) as soon as they sign into Workday.
To deter fraudulent changes, any updates to Payment Elections still require re-authentication using 2FA. This means that if employees – no matter their security role – choose to change payment elections, a pop-up will appear asking them to enter a “Privileged Session.” Employees will need to use their 2FA device to approve the privileged session.
Privileged sessions last 30 minutes. Once the privileged session expires, employees remain in the original Workday session, protected by 2FA at log in, until they either sign out of Workday or close the browser session.