If you are unfamiliar with the concept of multi-factor authentication, visit our overview page to learn more.
- 1 What should I do to prepare for MFA?
- 2 How do I set up Multi-Factor Authentication?
- 3 Which setup method should I choose?
- 4 What are the Multi-Factor Authentication verification options?
- 5 How do I use Multi-Factor Authentication?
- 6 How do I update my Multi-Factor Authentication settings?
What should I do to prepare for MFA?
Check out our readiness info page for details. You'll learn useful tips and find details about how to sign up when you're all set to go.
How do I set up Multi-Factor Authentication?
Upon receipt of your Multi-Factor Authentication sign-up request, ITS will enable MFA on your account, then send you a “Middlebury Multi-Factor Authentication Enrollment” email containing a link to Microsoft’s MFA Setup page. Follow the instructions presented to set up authentication methods you wish to use with your account.
- ITS must first enable MFA on your account before you proceed with the setup!
- Any device you wish to configure to use MFA must have a working network connection at the time of setup.
- By clicking the "Set it up now" button, you are activating Multi-Factor Authentication and you must complete the setup process or you may be unable to access your account, including your email.
Which setup method should I choose?
A: I have a Smartphone - and I travel internationally and/or travel in areas without cellular coverage.
Choose Microsoft's Authenticator app with a code.
This method is recommended when you have a device that supports Microsoft's Authenticator app and you will be in areas without consistent network access. When presented with an MFA challenge you will need to input the code displayed by the Authenticator app to complete your login.
Network access is NOT required for the MS Authentication app to provide you with a code.
B: I have a Smartphone - and I rarely travel in areas without cellular coverage.
Choose Microsoft's Authenticator app with notifications.
This method is recommended when having a device that supports Microsoft's Authenticator app and you will be in areas with consistent network access. When presented with an MFA challenge you will need to click Approve on the device to complete your login. Caution! Only click Approve when you have signed into a service you anticipate will trigger an authentication challenge.
Network access cellular or wifi IS required for the MS Authentication app to provide a notification.
C: I have a Flip or Feature phone.
Choose Phone then specify Call or Text.
This method is recommended when you have a device that doesn’t support the Microsoft Authenticator app. When presented with an MFA challenge you will have to receive a phone call then press #, or else receive an SMS text message to enter provided code to complete login.
Travel to areas without cellular coverage is not supported by this method.
What are the Multi-Factor Authentication verification options?
There are several different options for completing Multi-Factor Authentication verification. Choose the one that makes the most sense for your situation and follow the on-screen instructions.
Please note that the Microsoft Authenticator app is the recommended choice for Multi-Factor Authentication verification. You install this app on your mobile device. The Microsoft Authenticator App offers two verification methods, “Notify me through app” and “Use verification code from app”.
Notify me through app
Notify me through app is Microsoft's recommended option. It's the simplest way to complete verification. You enter your Middlebury email address and password at an online service’s login screen and then you receive a push notification to the Microsoft Authenticator app on your mobile device prompting you to “allow” or “deny” the authentication request. Please be careful not to allow login attempts that you did not initiate.
Use verification code from app
You enter your Middlebury email address and password at an online service’s login screen and then you are prompted to enter the code displayed in the Microsoft Authenticator app.
Please note: Once you have the app installed, you can use the verification codes generated by the app to login, anytime, from anyplace. The app generates verification codes even if your phone is does not have cellular service, say because you are travelling abroad.
Text code to my authentication phone
You enter your Middlebury email address and password at an online service’s login screen and then you are prompted to enter the code that the Multi-Factor Authentication service has texted to your mobile phone.
Call my authentication phone
You enter your Middlebury email address and password at an online service’s login screen and then you receive an automated call to either your primary or alternate telephone number prompting you to “verify“ the authentication request by pressing the "#" key on your phone.
- This option may be preferable for individuals with limited texting plans, no home computer or device, or those who may not have a mobile phone.
- You may choose to configure your office phone as your "alternate" authentication phone
Call my office phone
The "Call my office phone" option is not currently configured to work properly. Please choose another verification option.
How do I use Multi-Factor Authentication?
Once you have completed Multi-Factor Authentication set up, here is what to expect.
When you sign in to a Multi-Factor Authentication protected online service (like webmail), from off-campus (or outside of the Middlebury networks), you will be prompted to verify the authentication request using the primary verification option that you selected during setup.
For example, if you chose the "Notify me through the app" option, you would enter your Middlebury email address and password at an online service’s login screen and then you would receive a notification from the Microsoft Authenticator app on your mobile device prompting you to “verify “or “deny” the authentication request.
Caution: Only approve verification requests that you have initiated! This is particularly relevant to the "Notify me through app" and "Call my authentication phone" verification options. Imagine that an online criminal has your password and is trying to access your account. Once Multi-Factor Authentication has been enabled for your account, this access attempt would generate an authentication verification request. If you approved this verification request, the criminal would be able to access your account. Remember, only approve verification requests that you have initiated.
How do I update my Multi-Factor Authentication settings?
It's easy to change your multi-factor authentication settings, should the need arise, once you've completed the enrollment process.
To update your multi-factor authentication settings:
- Log on to the myapps.microsoft.com
- In the top right corner click your profile picture and click Profile.
- Click the link Additional security verification, you will get a MFA challenge.
- Click Update your phone numbers used for account security.
Note that there is a shortcut to the Office 365 Account settings screen, that you can get to without first logging into web mail. Try https://portal.office.com/account.
If you would like to configure the Microsoft Authenticator app as the preferred authentication method, then your next steps would be to:
- Select Use verification code from app from the verification option drop-down list
- Click the Configure button displayed next to the Authenticator app option.