Infrastructure Services

DoIT provides a number of IT infrastructure-related services to Executive Branch State agencies.

Multi-Factor Authentication Services




The Maryland Department of Information Technology (DoIT) offers Maryland state agencies a secure and centrally managed Multi-Factor Authentication (MFA) platform, also known as Identity Access Management (IAM) and Single Sign-On (SSO). The DoIT IAM technology can be used to initiate, capture, record and manage user identities and their related access permissions in an automated fashion. This ensures that access privileges granted according to one interpretation of policy and all individuals and services are properly authenticated, authorized and audited.

Features and Benefits

One of the greatest benefits of Multi-Factor Authentication (MFA) is that it allows organizations to use advanced security options like Single Sign-On (SSO), which is easier for users, but harder for hackers. With SSO, the user performs an initial MFA process. Once that’s done successfully, the user is admitted to their SSO software and can gain access to all their required apps and data without having to enter passwords or credentials each time. This in turn lets users avoid entering passwords multiple times a day, saving them a few minutes of time each day.

MFA requires additional credentials beyond username and password for gaining access to an application, site, or data. There are three basic elements that can be used in MFA:

  • The user knows (like a password or PIN)
  • The user possesses (like a smart card or mobile phone)
  • The user is (as represented by, say, a fingerprint)

Another benefit is to deter social engineering. Social engineering is a technique used by hackers to gain access to people’s data, accounts, or financial information. Through social engineering, hackers will attempt to talk someone out of a password, or other identifying information (like a Social Security number). This might be easy, however when combined with MFA, attempting to talk someone out of a password and the special code sent to their phone is extremely difficult or impossible. More people are conscientious enough to not allow that level of manipulation.

Additionally, MFA services offer improved protection, ensure maximum security and unparalleled protection that doesn’t get in the way of the user experience and productivity.

Department Owner
Infrastructure Services

Service Owner
Ronald L. Mundy

Support Contact
DoIT Service Desk

Currently offered

Eligible Customers

Enterprise Agencies Yes
Standalone (Non-Enterprise) Agencies Yes
Counties No
Local Municipalities No
Public No


Service Prerequisites


Before service can be provisioned, the customer must meet the following requirements.

DoIT Provided Services Access to the secure-auth portal
Technical N/A
Non-Technical Customer needs to have some level of knowledge of application that will be integrated with the multi-factor authentication.

Special conditions apply. Applications must support multi-factor authentication.

Scope of Service


This section outlines the area of responsibility between the provider (DoIT) and the customer.

In Scope Applications that support Multi-Factor Authentication (MFA) integration and Security Assertion Markup Language (SAML 2.0).
Out of Scope Other requirements may need to be met in order to integrate an application with the MFA platform.
Customer Responsibilities Customers create security questions and secondary authentication automation methods.

Service Level Agreements

Category Enterprise Customer Standalone (Non-Enterprise) Customer
Availability 99.9% Uptime 99.9% Uptime
Capacity N/A N/A
Support Hours 8AM - 5PM Monday - Friday 8AM - 5PM Monday - Friday
Maintenance Schedules N/A N/A
Upgrades and Refreshes Planned network maintenance or expected network interruptions are communicated to the customer. Planned network maintenance or expected network interruptions are communicated to the customer.


Human Trafficking GET HELP

National Human Trafficking Hotline - 24/7 Confidential

1-888-373-7888 233733 More Information
on human trafficking in Maryland

Customer Service Promise

The State of Maryland pledges to provide constituents, businesses, customers, and stakeholders with friendly and courteous, timely and responsive, accurate and consistent, accessible and convenient, and truthful and transparent services.

Take Our Survey

Help Stop Fraud in State Government

The Maryland General Assembly’s Office of Legislative Audits operates a toll-free fraud hotline to receive allegations of fraud and/or abuse of State government resources. Information reported to the hotline in the past has helped to eliminate certain fraudulent activities and protect State resources.

More Information