Middlebury

Multi-Factor Authentication

Revision as of 09:00, 2 April 2019 by Cynthia Slater (talk | contribs) (Moved "how to prepare" content to separate page.)

If you are unfamiliar with the concept of multi-factor authentication, visit our overview page to learn more.

What should I do to prepare for MFA?

Check out our readiness info page for details. You'll learn useful tips.

How do I set up Multi-Factor Authentication?

Upon completion of your Multi-Factor Authentication sign-up request, you will receive a “Middlebury Multi-Factor Authentication Enrollment” email. The enrollment email will include a link to Microsoft’s Multi-Factor Authentication Setup page. Follow the instructions included in the link to enable Multi-Factor Authentication for your account.

  • Please note that any device that you wish to configure to use MFA must have a working network connection at the time of setup.
  • By clicking the "Set it up now" button, you are activating Multi-Factor Authentication and you must complete the setup process or you may be unable to access your account, including your email.



What are the Multi-Factor Authentication verification options?

There are several different options for completing Multi-Factor Authentication verification. Choose the one that makes the most sense for your situation and follow the on-screen instructions.

Please note that the Microsoft Authenticator app is the recommended choice for Multi-Factor Authentication verification. You install this app on your mobile device. The Microsoft Authenticator App offers two verification methods, “Notify me through app” and “Use verification code from app”.

Use verification code from app *Recommended - always works*

You enter your Middlebury email address and password at an online service’s login screen and then you are prompted to enter the code displayed in the Microsoft Authenticator app.

Text code to my authentication phone

You enter your Middlebury email address and password at an online service’s login screen and then you are prompted to enter the code that the Multi-Factor Authentication service has texted to your mobile phone.

Call my authentication phone

You enter your Middlebury email address and password at an online service’s login screen and then you receive an automated call to either your primary or alternate telephone number prompting you to “verify“ the authentication request by pressing the "#" key on your phone.

  • This option may be preferable for individuals with limited texting plans, no home computer or device, or those who may not have a mobile phone.
  • You may choose to configure your office phone as your "alternate" authentication phone
Notify me through app *Not Recommended*

You enter your Middlebury email address and password at an online service’s login screen and then you receive a push notification to the Microsoft Authenticator app on your mobile device prompting you to “verify “or “deny” the authentication request.

Call my office phone

The "Call my office phone" option is not currently configured to work properly. Please choose another verification option.

How do I use Multi-Factor Authentication?

Once you have completed Multi-Factor Authentication set up, here is what to expect.

When you sign in to a Multi-Factor Authentication protected online service (like webmail), from off-campus (or outside of the Middlebury networks), you will be prompted to verify the authentication request using the primary verification option that you selected during setup.

For example, if you chose the "Notify me through the app" option, you would enter your Middlebury email address and password at an online service’s login screen and then you would receive a notification from the Microsoft Authenticator app on your mobile device prompting you to “verify “or “deny” the authentication request.

Caution: Only approve verification requests that you have initiated! This is particularly relevant to the "Notify me through app" and "Call my authentication phone" verification options. Imagine that an online criminal has your password and is trying to access your account. Once Multi-Factor Authentication has been enabled for your account, this access attempt would generate an authentication verification request. If you approved this verification request, the criminal would be able to access your account. Remember, only approve verification requests that you have initiated.


How do I update my Multi-Factor Authentication settings?

It's easy to change your multi-factor authentication settings, should the need arise, once you've completed the enrollment process.

To update your multi-factor authentication settings:

  1. Log on to the myapps.microsoft.com
  2. In the top right corner click your profile picture and click Profile.
  3. Click the link Additional security verification, you will get a MFA challenge.
  4. Click Update your phone numbers used for account security.

Note that there is a shortcut to the Office 365 Account settings screen, that you can get to without first logging into web mail. Try https://portal.office.com/account.

If you would like to configure the Microsoft Authenticator app as the preferred authentication method, then your next steps would be to:

  1. Select Use verification code from app from the verification option drop-down list
  2. Click the Configure button displayed next to the Authenticator app option.