FAQ: Two-factor authentication

What is 2FA?

Two-factor authentication (2FA) is an enhanced security measure that requires a person to use two different verification methods — such as a password and a one-time security code — to gain access to their account. After signing in to my529, users will employ 2FA to verify their identity via a code sent by text message, phone call, or third-party application.

Why does my529 require 2FA?

2FA enhances security for account owners and account agents. 2FA security has become an industry standard for financial institutions, bolstering password-based account security with an authentication procedure to ensure the authorized user is the person requesting access.

How do users register for 2FA?

When a user logs in to their my529 account they will be required to complete a 2FA registration process. The process will require the user have either a ten-digit U.S. phone number or an authenticator app.

To register, users will need to choose their authentication method:

  • Text.
  • Phone call.
  • Authenticator app to generate a random code (e.g. Google or Microsoft Authenticator).

For text and phone call, the user will receive a unique code that will be valid for a brief time. They will need to enter the code where designated online to access their accounts. The authenticator app will provide a security code for users to enter where designated.

If the authentication process does not work, the user should choose a different authentication method.

What is an authenticator app?

Authenticator apps support 2FA by verifying identity. Companies such as Google and Microsoft provide authenticator apps. my529 does not endorse any third-party authenticator app over another.

Does my529 provide technical support for authenticator apps?

my529 does not provide technical support for authenticator apps. Users should contact the authenticator app provider for support if they are having difficulty using an app. They can avoid using an authenticator app by choosing the call or text verification methods when registering with 2FA.

To change the 2FA verification method, users need to log in to their my529 account and go to the Settings page.

Can a user disable 2FA on their account?

To manage my529 account(s) online, users must register for 2FA. Users who do not want to register for 2FA can manage their accounts and make transactions by mail. Use forms available for download on my529.org/how-to-save/forms-documents/ or by request at 800.418.2551. my529 will send account statements to the my529 account owner via their preferred statement delivery method.

What happens if the user doesn’t receive a security code?

Security codes are generally sent within 20 seconds to the registered phone number. If the user has been waiting longer than one minute for a code, they should make sure they are using a phone with the same phone number used during the 2FA registration. If the number is the same and they still have not received a code, they should select the option to send a new code or choose a different 2FA method.

Will users receive confirmation of their registration?

Once users have successfully registered for 2FA, they will receive a confirmation email from my529.

Find us on social media:

Important Legal Notice

Investing is an important decision. The investments in your account may vary with market conditions and could lose value. Carefully read the Program Description in its entirety for more information and consider all investment objectives, risks, charges and expenses before investing. For a copy of the Program Description, call 800.418.2551 or visit my529.org.

Account Value. Investments in my529 are not insured or guaranteed by my529, the Utah Board of Higher Education, the Utah Education Savings Board of Trustees, any other state or federal agency, or any third party. However, Federal Deposit Insurance Corporation (FDIC) insurance is provided for the FDIC-Insured investment option. In addition, my529 offers investment options that are partially insured for the portion of the respective investment option that that includes FDIC-insured accounts as an underlying investments. Units in my529 have not been registered with the United States Securities and Exchange Commission or with any state securities commission.

FDIC insurance is subject to limits set by federal law. Click here for more information about FDIC Insurance.

Non-Utah Taxpayers and Residents. The state in which you or your beneficiary pay taxes or live may offer a 529 plan that provides state tax or other benefits, such as financial aid, scholarship funds, and protection from creditors, not otherwise available to you by investing in my529. You should consider such benefits, if any, before investing in my529.

Consult an advisor. my529 does not provide legal, financial, investment, or tax advice, and the information provided on this website does not contain advice and cannot be construed as such or relied upon for those purposes. You should consult your own tax or legal advisor to determine the effect of federal and state tax laws on your particular situation.

Morningstar rating. A Morningstar Analyst Rating for a 529 college savings plan is not a credit or risk rating. Analyst ratings are subjective in nature and should not be used as the sole basis for investment decisions. Morningstar does not represent its analyst ratings to be guarantees. Please visit Morningstar.com for more information about the analyst ratings, as well as other Morningstar ratings and fund rankings.

my529 does not pay commissions, loads or sales charges to financial advisors nor does it endorse financial advisors.

Information on this website is believed to be accurate when posted and is qualified in its entirety by the Program Description.