The information in this article can be downloaded for printing out:
- Signing in to Office 365 for the first time and setting up multi-factor authentication (MFA)
- Before you begin
- Are you at home or on campus?
- Installing and configuring the Microsoft Authenticator app on iPhone
- How to update your preferred MFA verification option at any time
- How to reset your MFA configuration to start again
When you first access Office 365, you sign in using your University of Otago email address and need to set up multi-factor authentication (MFA). If your access is from:
- On-campus, you set it up manually
- Off-campus, you will be prompted to do it when you log in
Multi-factor authentication (MFA) is a security mechanism that requires you to provide two or more known pieces of information in order to authenticate your identity. For example, logging in to your bank account via a web browser may require you to enter a code sent to your mobile phone or use the bank’s mobile app to confirm your access. Using Office 365 at home requires you to approve the access using the “Microsoft Authenticator” app on your mobile phone or to enter a code sent to it.
After setting up MFA, keep your mobile phone handy whenever you sign in to Office 365 so you can confirm your identity.
Please note that once MFA is set up on your mobile phone, your ongoing access to Office 365 will be linked to it. If you lose or need to replace your phone, please contact AskOtago for assistance:
Tel +64 3 479 7000 or 0800 80 80 98
During the MFA setup process Microsoft will ask “How should we contact you” [to perform MFA checks as you log in]. The options are:
- Mobile App: At Otago this refers to the “Microsoft Authenticator” app that you install on your mobile phone, and means that when you log in to Office 365, Microsoft will either request a one-time code from the app or send the app a “please approve this login” message that you respond to.
- Authentication Phone: this also refers to your mobile phone, but in this case when you log in, Microsoft sends an SMS (TXT) code to your phone that you will enter on the Office 365 login page. Alternately, they will call your phone to confirm your identity.
The University’s Cyber Security Team strongly recommends that you use the “Microsoft Authenticator” app on your mobile phone as your primary additional verification option, as it provides the highest level of security for your account and data.
If you are unable to install the “Microsoft Authenticator” app onto your mobile phone, you can receive a text code as an alternative identity verification method.
Depending on your location, follow the steps in either section A. or B. below, then follow the common steps in section C.
If you are logging in for the first time while on campus, you will need to go directly to MFA here: https://aka.ms/mfasetup
This video from Microsoft will guide you through the steps
You will be prompted to set up multi-factor authentication when you first log in to Office 365.
Open a new web browser session with no other tabs running. There is no need to use the University’s VPN Service to access Office 365 online when you are off campus.
- Go to the Office 365 sign in page and click Sign in.
- Enter your University email address, then press the Next button.
- If you are presented with a choice of accounts to sign in to (as shown below), select Work or School account.
- When Microsoft detects your Otago email address, it will redirect you to the University’s secure web-based login service. Select the Staff Login radio button and enter your University username and password. You may see either of the two following login screens:
- In the More Information required window, press Next.
- In Step 1: How should we contact you?, use the drop-down option to change it to Mobile App.
- Select the Use verification code radio button and click Set up.
- This will bring up the Configure mobile app window displaying a QR code. Leave this window open, and go to your mobile phone.
- Open your App Store, search for Microsoft Authenticator, download it, and open it.
- When prompted, choose to Allow notifications and tap OK on the screen that mentions data gathering.
- Tap the Skip link at the bottom until you get to the screen asking if you are Here for work? On that screen, tap Add work account.
- Hold your phone camera over the QR code displayed on your computer.
- The mobile app setup is now complete, so click the Next button on your computer.
- Add your mobile phone number as a back-up, and click Finished.
- You will be prompted to sign into Office 365 again. (Note the link allowing you to sign in another way. This can be used if you have any difficulty with the authenticator.)
- Signing in will send a notification to your phone. Approve this on your phone.
- You can also tick the box on the prompt to stay signed in while your computer is on.
- You will see a page showing that you have set up all the security features. You can close this tab and return to Office 365.
If you have previously set up MFA, and now want to change your preferred verification method (e.g. to use the Microsoft Authenticator app) go to the MFA setup page: https://aka.ms/mfasetup
This Microsoft video shows you how to set your preferred verification method to use the Microsoft Authenticator app.
If you have problems with your installed MFA and need to start again, please contact AskOtago for assistance:
Tel +64 3 479 7000 or 0800 80 80 98