Skip to main content

Set up your Microsoft 365 sign-in for multi-factor authentication

Victor Martinez
  • Updated

By setting up MFA, you add an extra layer of security to your Microsoft 365 account sign-in. For example, you first enter your password and, when prompted, you also type a dynamically generated verification code provided by an authenticator app or sent to your phone.

https://aka.ms/mfasetup 

 

1.  Sign in to Microsoft 365 with your work or school account with your password like you normally do. After you choose Sign in, you'll be prompted for more information.

A dialog box telling you that more information is required to complete your sign-in

2.  Choose Next.

3.  The default authentication method is to use the free Microsoft Authenticator app. If you have it installed on your mobile device, select Next and follow the prompts to add this account. If you don't have it installed there is a link provided to download it.

If you would rather use SMS messages sent to your phone instead, select I want to set up a different method. Microsoft 365 will ask for your mobile number, then send you an SMS message containing a 6-digit code to verify your device.

mceclip0.png

Tip: For a faster, and more secure, experience we recommend using an authenticator app rather than SMS verification.

4.  Once you complete the instructions to specify your additional verification method, the next time you sign in to Microsoft 365, you'll be prompted to provide the additional verification information or action, such as typing the verification code provided by your authenticator app or sent to you by text message.

Note: Generally you'll only need the additional verification method the first time you sign into a new app or device, or after you've changed your password. You will need to authenticate each time you login to Office365 through the web browser. 

 

Registration and management of FIDO2 security keys

  1. Browse to https://myprofile.microsoft.com or directly, https://aka.ms/mysecurityinfo
  2. Sign in if not already.
  3. Click Security Info.
    1. If you already have at least one Multi-Factor Authentication method registered, you can immediately register a FIDO2 USB security key.
    2. If you don't have at least one Multi-Factor Authentication method registered, you must first add one.
    3. WNPA IT Support can issue a Temporary Access Pass, if no phone is available, to allow you to register a FIDO2 Security key, please reach out at 520-789-7415.
  4. Add a FIDO2 Security key by clicking Add method and choosing Security key.
  5. Choose USB device.
  6. Have your key ready and choose Next.
  7. A box will appear and ask you to create/enter a PIN for your security key, then perform the required gesture for the key, either biometric or touch.
  8. You will be returned to the combined registration experience and asked to provide a meaningful name for the key so the user can identify which one if they have multiple. Click Next.
  9. Click Done to complete the process.

For any needed keys, please submit a transfer order from the Warehouse (990). 

  • ALU: 055367 - FIDO SECURITY KEY USB-A NFC (for any RP Install Site)
  • ALU: 055368 - FIDO SECURITY KEY USB-C NFC (for anyone with USB-C ports or 2022 RP Install/Refresh Sites)

 

 

For information on signing in using this two-step verification, see Sign in to your WNAP.org account using your two-step verification method.

Related articles

Comments

0 comments

Article is closed for comments.