How This Queensland Campus Uses Passwordless MFA – No Phones Required

Northside Christian College faced a significant operational challenge when their insurance provider mandated Multi-Factor Authentication (MFA) across all student accounts. With an existing mobile phone policy that restricted device use on campus, the college needed to find a solution that satisfied both their security obligations and their commitment to a focused learning environment.

As a K–12 institution in Queensland, Australia, Northside Christian College has built a strong culture of digital security — supported by a dedicated board and specialist security advisors with a clear mandate to protect student data. When the opportunity arose to modernise their authentication processes, the priority was finding an approach that would strengthen security without adding friction to the everyday student experience.

The Challenge: Meeting Cyber Compliance on a Phone-Free Campus

The urgency of the challenge became clear when the college’s cyber insurance provider extended its MFA requirement to the entire student body. While staff had already transitioned successfully — adopting security keys and mobile-based authentication — applying the same protections to students presented a distinctly different set of constraints. Northside Christian College’s campus mobile phone policy effectively ruled out app-based authentication methods, requiring the IT team to look beyond conventional solutions.

“We needed a solution for students that didn’t require another device,” said Sophia, Systems Administrator at Northside Christian College. Beyond the logistical challenge, the team was equally mindful of the cognitive impact on younger learners. For junior school students already navigating the demands of traditional username and password combinations, any additional layer of security needed to reduce complexity rather than compound it.

The Solution: A Specialized Path to Passwordless Security

To solve the problem, Northside paired Clever Classroom MFA with Clever Badges. Sophia used Microsoft Entra ID as the school’s Identity Provider and set up a custom subdomain to move student logins into the Clever ecosystem. In this new workflow, Clever Badges became the primary sign-in factor — replacing traditional Microsoft passwords entirely.

Clever Classroom MFA was layered on top to handle the secondary security factor required for compliance. For younger students, the difference was immediate. She noted: “With junior school, it is really good. I think they’re finding it a lot easier to sign in.” She added: “With the Clever Portal, there’s one click and a student can go directly to that website. It’s definitely more seamless for the students.”

The Results: Driving Efficiency and Cultural Change

The shift has had a real impact on the IT team’s long-term roadmap. “I expect that next year, when we do our end of year rollover, we will no longer need to hand out passwords to students.” She shared. “We will just be printing out the Badges and distributing them.”

This move has also sparked broader change across campus. The school is now making the most of student ID cards for printing, kiosk sign-ins, and more. Sophia acknowledged it would have been “really hard to wean them off passwords” without this kind of whole-campus shift.

To other schools thinking about a similar path, her advice comes down to communication: “Once the user understands why we’re doing it, they tend to accept it a bit more.”

Through this rollout, Northside Christian College has shown that strong security and classroom usability don’t have to work against each other. By moving toward a passwordless future with Clever, the school has not only met its insurance obligations — it’s given students a simpler, more secure way to show up and learn.