The DDC IT Team has enabled Multi-Factor Authentication (MFA) during login to Microsoft Office 365 accounts. MFA will be required during login for access to all Microsoft Office 365 Online products and sites that utilize Single Sign On with your DDC issued Microsoft account.
If previously registered for the Microsoft Self Service Password Reset feature, the setup for an additional authentication method will have already been completed.
Microsoft Login - MFA Already Registered
- At a Microsoft login prompt, enter your email and click Next.
- Enter your password and click Sign in.
- Microsoft will prompt for approval of the sign in request. If the Microsoft Authenticator app was setup, it will default to that method and send a notification to the mobile device setup with the app.
Note: The approval can also time-out if not approved shortly after requested. If that happens, a "We didn't hear from you" message appears and you can select to send another request, choose another method, or cancel to return to sign-in.
-
To approve a sign in request on Microsoft Authenticator:
- A notification will be sent to the app to your phone for your to approve. If you have a screen lock, it will prompt you to confirm the unlock code.
Note: Microsoft Authenticator may require additional authentication either with a passcode, fingerprint, pattern or face ID to fully approve the push.
- If a method other than the app is needed, select the "I can't use my Microsoft Authenticator app right now" link and a list of other options will be displayed. The list will vary depending on the methods already registered to your account. They may include:
- Approve a request on my Microsoft Authenticator app
- Use a verification code (displayed in an authenticator app)
- Call +X XXX-XXX-XXXX
- Text +X XXX-XXX-XXXX
- Token or Token Code (YubiKey or other hardware token)
- Any other method setup within your account
-
To approve via Text/Call Code
- Click the "I can't use my Microsoft Authenticator app right now" link
- Select Call or Text option from the list (can have multiple numbers setup)
-
- Enter the code that was received via text or voice and click Verify.
Note: The session can timeout when waiting for the code to be verified.
If that happens, you will need to close the browser and try sign in again.
- Once approval of your sign in has been confirmed, you will be granted access to the resource being logged into as normal.
Microsoft Login - MFA Not Registered
- At a Microsoft login prompt, enter your email and click Next.
- Enter your password and click Sign in.
- A prompt will state "More information required" if you need to complete setup of additional authentication methods. Click Next.
- Registration of two authentication methods are required for Microsoft Self Service Password Reset and those methods (except for security questions) apply to MFA during login as well. The Microsoft Authenticator App is recommended, however other apps and methods can be utilized.
- Detailed articles for setting up the different methods of authentication:
- Microsoft Authenticator App Setup
- Phone Authentication Setup
- Security Question Authentication Setup (Does not apply to MFA)
- Future sign ins will reflect the first section of this article "Microsoft Login - MFA Already Registered"
My Sign-Ins
To review, add, or remove the different sign-in options, log into the following site:
-
Add
- Click "Add sign-in method"
- Select the desired Method and walk through the setup
- Click "Add sign-in method"
-
Remove
- Click the Delete link next to the method to be removed
- Click the Delete link next to the method to be removed
-
Edit
- Default method can be updated using the Change link above the method
- On a Phone method, click the Change link to update the phone number listed
- Default method can be updated using the Change link above the method
Comments
0 comments
Article is closed for comments.