Rolling out Multi-factor Authentication (MFA) to over 100,000 users at Australia’s largest university might seem like an impossible task, but Andrew Collins and Cameron Duck of Monash University rolled out this functionality across students, faculty and alumni—all in just 100 days. In the wake of the Silent Librarian phishing attack—which targeted research and medical universities globally and resulted in 31 terabytes of compromised data and over $3.4 billion in costs—user security was top of mind for Monash. The university started its MFA journey by rolling it out in its existing Single Sign-On (SSO), use SCIM provisioning for applications such as Workplace and Slack, and are now working towards implementing API management in order to integrate with MuleSoft. Okta also brought a user-friendly experience for both signing up and signing in, meeting a primary requirement for the organization. Once fully deployed, Okta’s cloud-hosted identity platform also enabled Monash.