IT Security: Multi-Factor Authentication (MFA) Setup (2024)

Contact Information

662-915-5222

itsecurityolemiss.edu

Request Assistance

  • Homepage
  • About Us
  • Contact Us

Multi-factor authentication (MFA) provides an added layer of protection to make unauthorized access to your UM WebID more difficult. To sign-in successfully, MFA requires two things:

  1. Something you know (WebID credentials)
  2. Something you have (phone)

MFA is required to access online applications that authenticate using WebID Single Sign-On. Blackboard, email, and VPN are a few examples of this.

Register at least two (2) methods to ensure account access. UM IT Security recommends configuring the Microsoft Authenticator app on your smartphone as the default method and password manager / text message / phone call as a secondary method. Password managers are a great alternate method that can provide access to rotating authentication codes from a computer as well as a phone.

Setup MFA using Microsoft Authenticator (recommended primary method)

  1. On a computer, go to https://mfasetup.olemiss.edu.
  2. Log in using your WebID and password if you aren't already signed in.
    Students: Use WebID@olemiss.edu in the username field (NOT WebID@go.olemiss.edu)
  3. Click + Add sign-in method, choose Authenticator app, and press Add.
    IT Security: Multi-Factor Authentication (MFA) Setup (3)
  4. On a smartphone, install Microsoft Authenticator. Alternately, search the app store for Microsoft Authenticator and install the application published by Microsoft Corporation.
    IT Security: Multi-Factor Authentication (MFA) Setup (4)
  5. Once installed, open the Microsoft Authenticator application. Allow notifications, if prompted.
  6. To add an account, click + at the top of the app window.
  7. Select Work or school account followed by Scan a QR code.
  8. On your computer, click Next on the "Start by getting the app" window. Click Next on the "Set up your account" window.
  9. Use your smartphone to scan the QR code displayed on the screen.
  10. Your account should now be added to the Microsoft Authenticator App. On the computer, press Next and approve the verification request sent to your smartphone through the app.
  11. Everything should be successfully configured, press Next and Done to complete the setup process. If you are unable to successfully configure this MFA method, contact the IT Helpdesk for assistance.

When Microsoft Authenticator is the default MFA method, you will see a 2-digit number during sign-in and the app will prompt you to enter that number:
IT Security: Multi-Factor Authentication (MFA) Setup (5)

Setup MFA using a Password Manager or Authenticator App (recommended alternate method)

  1. On a computer, go to https://mfasetup.olemiss.edu.
  2. Log in using your WebID and password if you aren't already signed in.
    Students: Use WebID@olemiss.edu in the username field (NOT WebID@go.olemiss.edu)
  3. Click + Add sign-in method, choose Authenticator app, and press Add.
    IT Security: Multi-Factor Authentication (MFA) Setup (7)
  4. Select I want to use a different authenticator app.
  5. Click next to scan the QR code or copy the numerical code to configure the rotating authentication code in your authenticator app or password manager of choice (ex. Zoho OneAuth, 1Password, Bitwarden, Keeper, LastPass, RoboForm, etc.)
  6. Once successfully configured, the rotating authentication code will be available in your password manager using the mobile app, web interface, browser extension, or installed application on your computer. If you are unable to successfully configure this MFA method, contact the IT Helpdesk for assistance.

Setup MFA using a text message

  1. On a computer, go to https://mfasetup.olemiss.edu.
  2. Log in using your WebID and password if you aren't already signed in.
    Students: Use WebID@olemiss.edu in the username field (NOT WebID@go.olemiss.edu)
  3. Click + Add sign-in method, choose Phone, and press Add.
  4. Enter the phone number that you want to receive a text when account verification is needed and click Next.
    IT Security: Multi-Factor Authentication (MFA) Setup (9)
  5. You should now receive a text message with a code. Enter the code to verify the authentication method.
  6. Everything should be successfully configured, press Next and Done to complete the setup process. If you are unable to successfully configure this MFA method, contact the IT Helpdesk for assistance.

Setup MFA using a phone call

  1. On a computer, go to https://mfasetup.olemiss.edu.
  2. Log in using your WebID and password if you aren't already signed in.
    Students: Use WebID@olemiss.edu in the username field (NOT WebID@go.olemiss.edu)
  3. Click + Add sign-in method, choose Phone, Alternate Phone, or Office Phone and press Add.
  4. Enter the phone number that you want to be called when account verification is needed and click Next.
    Note: For international phone numbers, replace United States with the appropriate country from the drop-down menu.
    IT Security: Multi-Factor Authentication (MFA) Setup (11)
  5. You should now receive a phone call asking you to push a key to verify.
    Note: This option will NOT work on mobile phones set to block unknown callers.
  6. Everything should be successfully configured, press Next and Done to complete the setup process. If you are unable to successfully configure this MFA method, contact the IT Helpdesk for assistance.

Modify existing MFA settings for your WebID

To make changes to the MFA method already configured for your account go to https://mfasetup.olemiss.edu, log in with your WebID credentials, and add/change/delete sign-in methods as needed.
Students: Use WebID@olemiss.edu in the username field (NOT WebID@go.olemiss.edu)

Get help if you lost access to your MFA method

If you do not have access to the device used for MFA, contact the IT Helpdesk for assistance.

IT Security: Multi-Factor Authentication (MFA) Setup (2024)

FAQs

What is multi-factor authentication MFA and how does it work? ›

Multi-factor authentication (MFA) is a multi-step account login process that requires users to enter more information than just a password. For example, along with the password, users might be asked to enter a code sent to their email, answer a secret question, or scan a fingerprint.

How often do you have to complete the multi-factor authentication MFA process? ›

Applications, unlike browsers, have a 90 day rolling token. This means that you should not be asked to verify with MFA if you use an app more frequently than every 90 days. Any changes that cause you to login again, such as a password change, will trigger MFA verification.

What are the three factors typically used in multi-factor authentication (MFA)? ›

Factors include: (i) something you know (e.g. password/personal identification number (PIN)); (ii) something you have (e.g., cryptographic identification device, token); or (iii) something you are (e.g., biometric).

What is MFA authentication requirement? ›

Microsoft Entra multifactor authentication works by requiring two or more of the following authentication methods: Something you know, typically a password. Something you have, such as a trusted device that's not easily duplicated, like a phone or hardware key.

How do I know if my MFA is activated? ›

To check MFA status of your users,

Choose Identity from the menu, then go to Users and select All Users. Click on the Per-user MFA option among the choices listed above. You will be directed to the multi-factor authentication page, where you can view the MFA status of all your users.

What are the risks of multi-factor authentication? ›

Beware of MFA fatigue attacks.

Fraudsters can often buy your personal data, including your passwords, on the dark web. Armed with your password, attackers may bomb you with push MFA authentication requests. The goal is to get you to accept the notification so they can gain access to the account.

What is the difference between MFA and 2FA? ›

MFA allows a user to use more than one type of authentication method, whereas 2FA only allows you to add one type of authentication factor on top of your username and password. Because you can implement several types of authentication factors with MFA, it makes it a more secure solution to 2FA.

What happens if you don't have MFA? ›

At the end of your 90-day period, MFA will take effect for all your users. That means disruption is a big risk if you don't have MFA enabled. A day will come when everyone goes to log in and they're suddenly being told they need to download an app, set up their account on the app, get a code, etc.

Is MFA required for every login? ›

Admins will always be prompted for MFA on login. Users will be prompted for MFA "when necessary" (this is not strictly defined by Microsoft but includes when users show up on a new device or app, and for critical roles and tasks). Access to Azure portal, Azure CLI or Azure PowerShell by anyone will always require MFA.

What is the strongest authentication factor? ›

Biometric and possession-based authentication factors may be the strongest means of securing a network or application against unauthorized access. Combining these methods into a multifactor authentication process decreases the likelihood of a hacker gaining unauthorized access to the secured network.

What is the most secure MFA? ›

Most Secure: Hardware Keys

External hardware keys, like Yubikeys, are among the strongest authentication factors available. Also called FIDO keys, they generate a cryptographically secure MFA authentication code at the push of a button.

What is the most common example of multifactor authentication? ›

One of the most common forms of multi-factor authentication is referred to as "something you know." Oftentimes, this is a one-time password or PIN that's sent to your personal device, typically via text message or, more securely, through an authenticator app.

How do I register my device for MFA? ›

To register your device for use with MFA

Sign in to your AWS access portal. For more information, see Signing in to the AWS access portal. Near the top-right of the page, choose MFA devices. On the Multi-factor authentication (MFA) devices page, choose Register device.

Top Articles
Latest Posts
Recommended Articles
Article information

Author: Velia Krajcik

Last Updated:

Views: 6253

Rating: 4.3 / 5 (74 voted)

Reviews: 81% of readers found this page helpful

Author information

Name: Velia Krajcik

Birthday: 1996-07-27

Address: 520 Balistreri Mount, South Armand, OR 60528

Phone: +466880739437

Job: Future Retail Associate

Hobby: Polo, Scouting, Worldbuilding, Cosplaying, Photography, Rowing, Nordic skating

Introduction: My name is Velia Krajcik, I am a handsome, clean, lucky, gleaming, magnificent, proud, glorious person who loves writing and wants to share my knowledge and understanding with you.