Will we be allowed to setup/use multiple services/devices (in case one service is unavailable)?
Yes, it's recommended that you register multiple verification methods. When one method isn't available, you can choose to authenticate with another method.
Click here for further guidance.
How do I set up more than one authentication method at the time of registering?
- Go to the Microsoft Account page
- Click Security Info
- On the security info page click +Add Method
4. Select the method, e.g. Security Key
What if I am in a building with no WIFI, how will I receive my second factor code?
When setting up multi factor authentication you should select the option on the mobile app that generates a one-time passcode, and requires no mobile data or Wi-Fi connectivity.
The Microsoft Authenticator app is available for Android and iOS
What will the recommendation be for users working from home with no smart phone, or with no mobile signal?
You can choose to receive your code via a landline number, if you have one, and if you have a smart phone but no mobile signal, you can authenticate over WiFi.
If you have no landline, smart phone or signal available, then you will require a hardware token.
Is it possible to have the same phone number associated with multiple accounts, e.g. for staff who have access to project accounts as well as their personal account?
Yes - it is possible to setup the same phone number for different accounts (it also works for mobile numbers), but it doesn't give any indication as to which account you are trying to sign into when it calls.
If a landline has forwarding set up on it for example, Chorus desktop landline to a mobile number, will the telephone authentication work?
Ensure you've got unconditional forwarding set (not forward on no reply) then the call will forward immediately with no delay. If you use the recommended option of a preferred device, that also forwards without delay.
- click 'call me on the second factor page'
- phone rings
- pick up the phone
- automated message "Thank you for using the Microsoft’s sign-in verification system. Please press the hash key to finish your verification." (you don't actually have to listen to this whole message)
- press hash key
- login completes / incoming call hangs up.
You will have around 30 seconds to press the hash key from the time that you pick up the incoming call (or around 15 seconds to press hash if you choose to listen to the whole message).
What about staff and students new to the University, will they have MFA?
Yes, from 15 December 2020 all new staff and students will have MFA already deployed on their account, therefore they do not need to be included in the surname A-Z deployemnt timetable.
What about secondary accounts, will they have MFA applied to them?
There are two types of Multi-Factor Authentication (MFA). Most people will have Standard MFA applied to their account. Someone who is using an app or device that does not support MFA will need to use App passwords which are only available with App Password MFA (if you do not see the App Password option in your list of methods on the My Sign-ins page https://mysignins.microsoft.com/security-info, you have Standard MFA)
From 10th December 2020 new secondary accounts created automatically have Standard MFA applied to them.
Depending on how your secondary account is being used, Standard MFA may not be appropriate and an App password may be required. If you require App Password MFA please complete a request for Switch Current Type – Multi-Factor Authentication (MFA). For more information about App passwords see IT Help