IT Security: Multi-Factor Authentication (MFA) Setup (2024)

Contact Information

662-915-5222

itsecurityolemiss.edu

Request Assistance

  • Homepage
  • About Us
  • Contact Us

Multi-factor authentication (MFA) provides an added layer of protection to make unauthorized access to your UM WebID more difficult. To sign-in successfully, MFA requires two things:

  1. Something you know (WebID credentials)
  2. Something you have (phone)

MFA is required to access online applications that authenticate using WebID Single Sign-On. Blackboard, email, and VPN are a few examples of this.

Register at least two (2) methods to ensure account access. UM IT Security recommends configuring the Microsoft Authenticator app on your smartphone as the default method and password manager / text message / phone call as a secondary method. Password managers are a great alternate method that can provide access to rotating authentication codes from a computer as well as a phone.

Setup MFA using Microsoft Authenticator (recommended primary method)

  1. On a computer, go to https://mfasetup.olemiss.edu.
  2. Log in using your WebID and password if you aren't already signed in.
    Students: Use WebID@olemiss.edu in the username field (NOT WebID@go.olemiss.edu)
  3. Click + Add sign-in method, choose Authenticator app, and press Add.
    IT Security: Multi-Factor Authentication (MFA) Setup (3)
  4. On a smartphone, install Microsoft Authenticator. Alternately, search the app store for Microsoft Authenticator and install the application published by Microsoft Corporation.
    IT Security: Multi-Factor Authentication (MFA) Setup (4)
  5. Once installed, open the Microsoft Authenticator application. Allow notifications, if prompted.
  6. To add an account, click + at the top of the app window.
  7. Select Work or school account followed by Scan a QR code.
  8. On your computer, click Next on the "Start by getting the app" window. Click Next on the "Set up your account" window.
  9. Use your smartphone to scan the QR code displayed on the screen.
  10. Your account should now be added to the Microsoft Authenticator App. On the computer, press Next and approve the verification request sent to your smartphone through the app.
  11. Everything should be successfully configured, press Next and Done to complete the setup process. If you are unable to successfully configure this MFA method, contact the IT Helpdesk for assistance.

When Microsoft Authenticator is the default MFA method, you will see a 2-digit number during sign-in and the app will prompt you to enter that number:
IT Security: Multi-Factor Authentication (MFA) Setup (5)

Setup MFA using a Password Manager or Authenticator App (recommended alternate method)

  1. On a computer, go to https://mfasetup.olemiss.edu.
  2. Log in using your WebID and password if you aren't already signed in.
    Students: Use WebID@olemiss.edu in the username field (NOT WebID@go.olemiss.edu)
  3. Click + Add sign-in method, choose Authenticator app, and press Add.
    IT Security: Multi-Factor Authentication (MFA) Setup (7)
  4. Select I want to use a different authenticator app.
  5. Click next to scan the QR code or copy the numerical code to configure the rotating authentication code in your authenticator app or password manager of choice (ex. Zoho OneAuth, 1Password, Bitwarden, Keeper, LastPass, RoboForm, etc.)
  6. Once successfully configured, the rotating authentication code will be available in your password manager using the mobile app, web interface, browser extension, or installed application on your computer. If you are unable to successfully configure this MFA method, contact the IT Helpdesk for assistance.

Setup MFA using a text message

  1. On a computer, go to https://mfasetup.olemiss.edu.
  2. Log in using your WebID and password if you aren't already signed in.
    Students: Use WebID@olemiss.edu in the username field (NOT WebID@go.olemiss.edu)
  3. Click + Add sign-in method, choose Phone, and press Add.
  4. Enter the phone number that you want to receive a text when account verification is needed and click Next.
    IT Security: Multi-Factor Authentication (MFA) Setup (9)
  5. You should now receive a text message with a code. Enter the code to verify the authentication method.
  6. Everything should be successfully configured, press Next and Done to complete the setup process. If you are unable to successfully configure this MFA method, contact the IT Helpdesk for assistance.

Setup MFA using a phone call

  1. On a computer, go to https://mfasetup.olemiss.edu.
  2. Log in using your WebID and password if you aren't already signed in.
    Students: Use WebID@olemiss.edu in the username field (NOT WebID@go.olemiss.edu)
  3. Click + Add sign-in method, choose Phone, Alternate Phone, or Office Phone and press Add.
  4. Enter the phone number that you want to be called when account verification is needed and click Next.
    Note: For international phone numbers, replace United States with the appropriate country from the drop-down menu.
    IT Security: Multi-Factor Authentication (MFA) Setup (11)
  5. You should now receive a phone call asking you to push a key to verify.
    Note: This option will NOT work on mobile phones set to block unknown callers.
  6. Everything should be successfully configured, press Next and Done to complete the setup process. If you are unable to successfully configure this MFA method, contact the IT Helpdesk for assistance.

Modify existing MFA settings for your WebID

To make changes to the MFA method already configured for your account go to https://mfasetup.olemiss.edu, log in with your WebID credentials, and add/change/delete sign-in methods as needed.
Students: Use WebID@olemiss.edu in the username field (NOT WebID@go.olemiss.edu)

Get help if you lost access to your MFA method

If you do not have access to the device used for MFA, contact the IT Helpdesk for assistance.

IT Security: Multi-Factor Authentication (MFA) Setup (2024)

FAQs

What is multi-factor authentication MFA and how does it work? ›

Multi-factor authentication (MFA) is a multi-step account login process that requires users to enter more information than just a password. For example, along with the password, users might be asked to enter a code sent to their email, answer a secret question, or scan a fingerprint.

How often do you have to complete the multi-factor authentication MFA process? ›

Applications, unlike browsers, have a 90 day rolling token. This means that you should not be asked to verify with MFA if you use an app more frequently than every 90 days. Any changes that cause you to login again, such as a password change, will trigger MFA verification.

What are the three factors typically used in multi-factor authentication (MFA)? ›

Factors include: (i) something you know (e.g. password/personal identification number (PIN)); (ii) something you have (e.g., cryptographic identification device, token); or (iii) something you are (e.g., biometric).

What is MFA authentication requirement? ›

Microsoft Entra multifactor authentication works by requiring two or more of the following authentication methods: Something you know, typically a password. Something you have, such as a trusted device that's not easily duplicated, like a phone or hardware key.

How do I know if my MFA is activated? ›

To check MFA status of your users,

Choose Identity from the menu, then go to Users and select All Users. Click on the Per-user MFA option among the choices listed above. You will be directed to the multi-factor authentication page, where you can view the MFA status of all your users.

What are the risks of multi-factor authentication? ›

Beware of MFA fatigue attacks.

Fraudsters can often buy your personal data, including your passwords, on the dark web. Armed with your password, attackers may bomb you with push MFA authentication requests. The goal is to get you to accept the notification so they can gain access to the account.

What is the difference between MFA and 2FA? ›

MFA allows a user to use more than one type of authentication method, whereas 2FA only allows you to add one type of authentication factor on top of your username and password. Because you can implement several types of authentication factors with MFA, it makes it a more secure solution to 2FA.

What happens if you don't have MFA? ›

At the end of your 90-day period, MFA will take effect for all your users. That means disruption is a big risk if you don't have MFA enabled. A day will come when everyone goes to log in and they're suddenly being told they need to download an app, set up their account on the app, get a code, etc.

Is MFA required for every login? ›

Admins will always be prompted for MFA on login. Users will be prompted for MFA "when necessary" (this is not strictly defined by Microsoft but includes when users show up on a new device or app, and for critical roles and tasks). Access to Azure portal, Azure CLI or Azure PowerShell by anyone will always require MFA.

What is the strongest authentication factor? ›

Biometric and possession-based authentication factors may be the strongest means of securing a network or application against unauthorized access. Combining these methods into a multifactor authentication process decreases the likelihood of a hacker gaining unauthorized access to the secured network.

What is the most secure MFA? ›

Most Secure: Hardware Keys

External hardware keys, like Yubikeys, are among the strongest authentication factors available. Also called FIDO keys, they generate a cryptographically secure MFA authentication code at the push of a button.

What is the most common example of multifactor authentication? ›

One of the most common forms of multi-factor authentication is referred to as "something you know." Oftentimes, this is a one-time password or PIN that's sent to your personal device, typically via text message or, more securely, through an authenticator app.

How do I register my device for MFA? ›

To register your device for use with MFA

Sign in to your AWS access portal. For more information, see Signing in to the AWS access portal. Near the top-right of the page, choose MFA devices. On the Multi-factor authentication (MFA) devices page, choose Register device.

Top Articles
2024 Olympic soccer final: USWNT vs. Brazil preview, predictions, more
Pitbull Stadium? ¡Dale! Singer has naming rights to Florida International football stadium
English Bulldog Puppies For Sale Under 1000 In Florida
Katie Pavlich Bikini Photos
Gamevault Agent
Pieology Nutrition Calculator Mobile
Toyota Campers For Sale Craigslist
Unlocking the Enigmatic Tonicamille: A Journey from Small Town to Social Media Stardom
Ncaaf Reference
Globe Position Fault Litter Robot
Crusader Kings 3 Workshop
Robert Malone é o inventor da vacina mRNA e está certo sobre vacinação de crianças #boato
Guilford County | NCpedia
Maplestar Kemono
Dr Manish Patel Mooresville Nc
Apus.edu Login
Urban Dictionary: hungolomghononoloughongous
10 Fun Things to Do in Elk Grove, CA | Explore Elk Grove
Wgu Academy Phone Number
Wsop Hunters Club
Menards Eau Claire Weekly Ad
Robeson County Mugshots 2022
Poe Str Stacking
Pasco Telestaff
Coomeet Premium Mod Apk For Pc
Home
Hdmovie2 Sbs
Kentuky Fried Chicken Near Me
Breckiehill Shower Cucumber
Chicago Based Pizza Chain Familiarly
Wat is een hickmann?
Ticket To Paradise Showtimes Near Cinemark Mall Del Norte
Doctors of Optometry - Westchester Mall | Trusted Eye Doctors in White Plains, NY
Narragansett Bay Cruising - A Complete Guide: Explore Newport, Providence & More
Lacey Costco Gas Price
Jersey Shore Subreddit
Yu-Gi-Oh Card Database
United E Gift Card
Bfri Forum
Red Sox Starting Pitcher Tonight
Www.craigslist.com Syracuse Ny
How to Draw a Bubble Letter M in 5 Easy Steps
Taylor University Baseball Roster
Sand Castle Parents Guide
Gregory (Five Nights at Freddy's)
Grand Valley State University Library Hours
Holzer Athena Portal
Hello – Cornerstone Chapel
Stoughton Commuter Rail Schedule
Nfsd Web Portal
Selly Medaline
Latest Posts
Article information

Author: Velia Krajcik

Last Updated:

Views: 6253

Rating: 4.3 / 5 (74 voted)

Reviews: 81% of readers found this page helpful

Author information

Name: Velia Krajcik

Birthday: 1996-07-27

Address: 520 Balistreri Mount, South Armand, OR 60528

Phone: +466880739437

Job: Future Retail Associate

Hobby: Polo, Scouting, Worldbuilding, Cosplaying, Photography, Rowing, Nordic skating

Introduction: My name is Velia Krajcik, I am a handsome, clean, lucky, gleaming, magnificent, proud, glorious person who loves writing and wants to share my knowledge and understanding with you.