Aka.ms/mfasetup - Setup Multifactor Authentication
Two-factor authentication (2FA) or Multifactor Authentication (MFA), is an additional authentication method available for accessing all MIT services externally. It is not a replacement of the conventional login page, but rather, an additional layer that helps make it harder for someone to compromise your account.
You will still log on with your usual MIT staff username and password, but in addition to that, you will be asked to confirm login via the Microsoft MFA App. This guide explains how you would register your mobile phone, download the Microsoft MFA APP to log on externally going forward from aka.ms/mfasetup.
Setup MFA from Aka.ms/mfasetup?
Multi Factor Authentication (MFA) reduces the risk of compromise by 99.9%. Therefore, it is a good idea to use it for every user in an organization. This article provides step-by-step instructions for setting up MFA with the Microsoft Authenticator app on a smartphone. If you have MFA enabled and you switch to a new device, follow the steps here.
Open a browser and navigate to aka.ms/mfasetup
Sign in with your user name and password.
Select Next to proceed
Select I want to set up a different method to set up phone call as second factor authentication
Select Phone from the drop-down menu
Select Confirm to set choice.
Enter the phone number you would like to use, select Text me a code as your authentication method and click Next
Microsoft MFA will send an authentication text code to the telephone number you have provided. Please check your mobile phone for the authentication text code. Enter the text code received into the textbox provided and select Next to proceed
Access the Additional security verification page?
Select Next from the More information required prompt. The Additional security verification page appears. On the Additional security verification page, select the two-factor verification method to use to verify you are who you say you are when you sign into your work or school account. You can select:
Mobile app
Receive notifications for verification. This option pushes a notification to the authenticator app on your smartphone or tablet. View the notification and, if it is legitimate, select Authenticate in the app. Your work or school may require that you enter a PIN before you authenticate.
Use verification code. In this mode, the app generates a verification code that updates every 30 seconds. Enter the most current verification code in the sign-in screen.
The Microsoft Authenticator app is available for Android and iOS.
Authentication phone
Phone call places an automated voice call to the phone number you provide. Answer the call and press the pound key (#) on the phone keypad to authenticate.
Text message ends a text message containing a verification code. Following the prompt in the text, either reply to the text message or enter the verification code provided into the sign-in interface.
Office phone
Places an automated voice call to the phone number you provide. Answer the call and press the pound key (#) on the phone keypad to authenticate.
How to change your two-factor verification method and settings?
After you set up your security verification methods from aka.ms/mfasetup, for your work or school account, you can update any of the related details, including:
Default security verification method
Security verification method details, like your phone number
Authenticator app setup or deleting a device from the authenticator app
What is the Microsoft Authenticator app?
The Microsoft Authenticator app helps you sign-in to your accounts if you use two-factor verification. Two-factor verification helps you to access your accounts more securely, especially while viewing sensitive information. Because passwords can be forgotten, stolen, or compromised, two-factor verification is an additional security step that helps protect your account by making it harder for other people to break in.
You can use the Microsoft Authenticator app in multiple ways, including:
Respond to a prompt for authentication after you sign in with your username and password.
Sign-in without entering a password, using your username, the authenticator app, and your mobile device with your fingerprint, face, or PIN.
As a code generator for any other accounts that support authenticator apps.