Multi-Factor Authentication (MFA) Verification¶

What is MFA?¶

Multi-Factor Authentication (MFA) adds an extra layer of security to password-based logins by requiring a verification code sent to your email.

Why MFA? - FISMA High requirement for password authentication - Protects against stolen passwords - Verifies you have access to your registered email - Required for compliance

When is MFA used? - ✅ Password-based login - ❌ NOT needed for passkey login (passkeys are inherently multi-factor)

MFA Verification Process¶

Step 1: Trigger MFA¶

After entering your email and password, click "Login"

Step 2: MFA Verification Screen¶

You'll see the MFA verification page:

Screen shows: - Your email address (where code was sent) - 6-digit code entry field - Time remaining until code expires - Option to resend code - Option to cancel and return to login

Step 3: Check Your Email¶

Within 1-2 minutes, you'll receive an email with your verification code:

Email Subject: Your Verification Code for FISMA Document Upload

From: FISMA Document Upload System <noreply@waed.uscourts.gov>
To: attorney@lawfirm.com
Subject: Your Verification Code for FISMA Document Upload

─────────────────────────────────────────────────────
U.S. District Court - Eastern District of Washington
FISMA Secure Document Upload System
─────────────────────────────────────────────────────

VERIFICATION CODE

Your one-time verification code is:

    [123456]

This code will expire in 5 minutes.

Login Information:
Email: attorney@lawfirm.com
Login Time: November 30, 2025 at 3:45 PM PST
IP Address: 192.168.1.100

If you did not attempt to log in, please contact the Clerk's
Office immediately at (509) 458-3410.

Code Properties: - ⏱️ Valid for: 5 minutes - 🔒 Single-use: Can only be used once - 🔢 Format: 6 digits (numbers only)

Step 4: Enter Verification Code¶

Copy or memorize the 6-digit code from email
Return to the MFA verification page
Enter the code (no spaces)
Click "Verify"

Tips: - Enter just the 6 digits (e.g., 123456) - No spaces or dashes needed - Code is case-insensitive (all numbers)

Step 5: Verification Success¶

✅ Success! You're now logged in.

MFA Code Details¶

Code Format¶

Example Code: 123456

Length: Always 6 digits
Characters: Numbers 0-9 only
No special characters: No letters, spaces, or punctuation

Code Expiration¶

Valid for: 5 minutes from email sent

Countdown Timer: Shows remaining time on verification screen

After expiration: - Old code becomes invalid - Must request a new code - Click "Resend Code" button

Code Security¶

Each code is: - Unique per login attempt - Single-use (can't be reused) - Time-limited (5 minutes) - Tied to your IP address and session

Security features: - If someone intercepts your code, it expires quickly - Can't be used on different device/session - New code invalidates previous one

Resending Codes¶

When to Resend¶

❌ Code expired (waited more than 5 minutes)
❌ Email not received
❌ Email accidentally deleted
❌ Entered wrong code too many times

How to Resend¶

On MFA verification screen, click "Resend Code"
New code sent to your email
Previous code becomes invalid
New 5-minute timer starts

Cooldown: Can resend once per minute to prevent abuse

Alternative: Use Passkey Instead¶

If you have passkeys enrolled, you can bypass MFA:

Option 1: During MFA Screen¶

Click "Use a passkey instead" on the MFA verification page

Your browser will prompt for biometric/security key authentication

Click "Back to Login" or "Cancel"
Click "Sign in with a passkey"
Authenticate with your device

Why use passkeys? - ⚡ Faster (no waiting for email) - 🔐 More secure (phishing-resistant) - ✅ No codes to enter - 🛡️ Meets FISMA IA-2(2) requirements

→ Set up a passkey

Troubleshooting MFA¶

Problem: Email Not Received¶

Check these locations: 1. ✉️ Inbox - Should arrive in 1-2 minutes 2. 📧 Spam/Junk folder - May be filtered 3. 📬 Promotions (Gmail) - May be miscategorized 4. 🚫 Blocked senders - Check email filters

Solutions: 1. Wait 5 minutes for delivery 2. Check spam folder 3. Click "Resend Code" 4. Whitelist noreply@waed.uscourts.gov 5. Contact IT if organization blocks automated emails

Problem: Code Expired¶

Symptoms: - Error message: "Code has expired" - Timer reached 0:00 - More than 5 minutes passed

Solution: 1. Click "Resend Code" 2. Check email for NEW code 3. Enter new code within 5 minutes

Tip: Have your email open before requesting code

Problem: "Invalid code"¶

Common causes: - Typo in code entry - Using old/expired code - Confusing similar digits: - 0 (zero) vs O (letter O) - 1 (one) vs l (lowercase L) - 5 vs S

Solutions: 1. Double-check each digit carefully 2. Copy-paste from email (if allowed) 3. Request new code if uncertain 4. Ensure no extra spaces

Problem: Multiple Failed Attempts¶

After 5 invalid code entries: - Session resets for security - Must start login process again - May trigger account lockout

Solution: 1. Return to login page 2. Log in again with email/password 3. Be more careful entering new MFA code 4. Consider copying code from email

Problem: Email Delayed¶

Typical delivery: 1-2 minutes Maximum wait: 5 minutes

If delayed beyond 5 minutes: 1. Check with IT - organization may block automated emails 2. Whitelist entire @waed.uscourts.gov domain 3. Check firewall/spam filter settings 4. Try resending code 5. Contact Clerk's Office if persistent

Problem: Can't Access Email¶

Scenarios: - Email account locked - Email password forgotten - Phone/device unavailable

Solutions: 1. Immediate: Contact Clerk's Office (509) 458-3410 2. If you have passkey: Use passkey login instead (no email needed) 3. Update email: After regaining access, verify your email in account settings

Security Considerations¶

Email shows login you didn't make:

Action: 1. ✋ DO NOT enter the verification code 2. 📞 CALL Clerk's Office immediately: (509) 458-3410 3. 🔒 CHANGE your password after confirming security 4. 📧 CHECK for security alert emails 5. 🛡️ ENABLE passkey for better security

Phishing Awareness¶

Legitimate MFA email: - ✅ From: noreply@waed.uscourts.gov - ✅ Subject: Contains "Verification Code" - ✅ Links to: waed.uscourts.gov only - ✅ Contains login timestamp and IP - ✅ Professional court formatting

Red flags (PHISHING): - ❌ From different domain - ❌ Asks for password in email - ❌ Links to non-court websites - ❌ Spelling/grammar errors - ❌ Urgent threats or pressure

If suspicious: Contact Clerk's Office before clicking anything

MFA Best Practices¶

Before Logging In¶

✅ Have email accessible - Open email app/tab ✅ Check inbox settings - Ensure court emails not blocked ✅ Plan timing - Don't start login if in a hurry ✅ Stable connection - Ensure internet is reliable

During MFA¶

✅ Act quickly - Code expires in 5 minutes ✅ Copy carefully - Double-check each digit ✅ Watch timer - Resend if getting close to expiration ✅ Don't refresh page - Will lose your session

✅ Delete code email - One-time use only (optional) ✅ Note suspicious activity - Check login info in email ✅ Log out when done - Especially on shared computers ✅ Consider passkey - Avoid MFA in future

Skipping MFA with Passkeys¶

Want to avoid MFA codes entirely?

Set up a passkey - it provides built-in multi-factor security:

Passkey includes: 1. Something you have: Your device 2. Something you are: Biometric (fingerprint/face)

Result: No MFA codes needed! Passkey authentication satisfies multi-factor requirement.

→ Learn how to set up passkeys

Frequency of MFA¶

MFA is required: - ✅ Every password-based login - ✅ Even if you logged in earlier - ✅ After session timeout

MFA is NOT required for: - ❌ Passkey logins (already multi-factor) - ❌ Extending session (while logged in)

Next Steps¶

After completing MFA:

Upload Documents → Start uploading sealed documents
Set Up Passkey → Avoid MFA codes in the future
Session Management → Understand session timeout and security

Need Help?¶

Clerk's Office - Eastern District of Washington Phone: (509) 458-3410 Email: ecfinfo@waed.uscourts.gov Hours: Monday-Friday, 8:00 AM - 5:00 PM Pacific Time

← Back to Login Methods | Next: Password Reset →