Multi-Factor Authentication using Microsoft Authenticator
Multi-Factor authentication provides a secure and convenient way to prove who you are when accessing your personal or work/school account. It is recommended that you use the Microsoft Authenticator app to help manage this process and the app can be configured for a simple notification acceptance.
This document explains how to configure a default sign-in option using Microsoft Authenticator. It is highly recommended that you provide alternate sign-in methods in case you lose your mobile device or do not have it available. At a minimum, you should have your default method that you will configure by following this document. It is recommended that you also configure a phone method for your mobile device and an Office phone method for your Office phone. You can also configure other methods to other devices at your preference.
To implement and use Multi-Factor authentication with Microsoft Authenticator please follow the steps provided:
1. If you are using a Mac computer, please DO NOT use the Safari browser. It will not properly display the content required for this process.
2. For Apple mobile devices you must allow the University to manage your mobile device when prompted to allow this process to work as described in these steps. If you do not allow the University to manage your mobile device, then you will be unable to use the default mail and calendar applications on your mobile device for your university account. You can download and use the Microsoft Outlook for IOS client applications in place of the default Apple applications.
3. All instructions for the Microsoft Authenticator application will be performed on your mobile device. All instructions for Office 365 will be performed on your PC or Mac computer. You can not complete this process solely from your mobile device.
4. Download and install the Microsoft Authenticator app to your mobile device. The app can be obtained from both the Google Play Store (Image on the Left) and the Apple App Store (Image on the Right).
5. You will need to sign into your Office 365 account Security Dashboard from your laptop or desktop computer. You can reach this site by entering the web address https://office.com. You will sign in with your MXXXXXXX@moreheadstate.edu Id and password.
6. Sign into Office 365.
7. Click on your account thumbnail icon in the upper right-hand corner and select View Account. This will be either your image or your initials.
8. Click on UPDATE INFO on the Security info panel.
9. Click on Add sign-in method and select Authenticator app from the drop-down list. Click Add.
10. Click Next once you have the Microsoft Authenticator app installed and open it on your mobile device.
11. Allow notifications on your mobile device if prompted and select add an account – Work or School.
12. Select Scan a QR code on your mobile device.
13. Click Next on your PC and scan the QR code image on your PC monitor.
14. You should receive a message Account Added Successfully.
15. Click Next on your PC and approve any notification you receive on your mobile device.
16. Click Next on your PC.
17. Check that your Default sign-in Method shows – Microsoft Authenticator – notification.
18. Please configure a second sign-in method. The steps 9, 10, 11 and 14 can be used for the alternate method configuration. In place of the authenticator app select phone method for the text messaging option, phone method for the voice call option and office phone for the voice call option to your University office phone. It is recommended that you provide alternate sign-in methods in case you lose your mobile device or do not have it available. At a minimum, you should have your default method that was just configured.
19. Attempt to sign in to the my.moreheadstate.edu portal on any device.
20. You should receive a notification on your mobile device requesting approval of your access request. Click Approve and your sign-in attempt should complete successfully.
21. You may be given the opportunity to select a checkbox for “Keep Me Signed In” (KMSI). It is recommended that you do not check this option unless you are the only person that will use this device. If you are signing in on an occasional use machine, then do not select the option for Keep Me Signed In.
22. You will be required to complete the MFA (Multi Factor Authentication) process on any device that you use, and it will provide the necessary authentication for access to the my.morheadstate.edu portal and any applications within the portal that are accessible through a single sign-on process.