Skip to end of metadata
Go to start of metadata

Multi-factor authentication (MFA) is a method of authentication that requires the use of more than one verification method and adds a second layer of security to user sign-ins and transactions. The security of MFA lies in its layered approach. Compromising multiple authentication factors presents a significant challenge for attackers. Even if an attacker manages to learn a user's password, it is useless without also having possession of the additional authentication method. It works by requiring any of the following verification methods after you enter your password:

  • A one-time pass code generated by a token device

  • A phone call with a one-time pass code

  • A smartphone authenticator app with push-notification approval or a one-time pass code

At Missouri State University, MFA can be used with your Office 365 Education and Admin Banner accounts. Some departments currently require the use of MFA on these accounts. In the future, all Missouri State users will use MFA to keep their accounts secure.


Step-by-step guide

Step 1

  1. Open your web browser and navigate to https://aka.ms/mfasetup.
  2. Sign in with your Office 365 username and password.


  3. You will be prompted about staying signed in. Choose No if you are on a public computer.

     
  4. You will be prompted to set up additional information. Click Next.


  5. You will be taken to the Additional security verification page. 


  6. On Step 1, choose how you would like to be contacted for authorization from the drop-down menu.

Authentication Options

Authentication Phone

This can be your office phone number or your mobile phone number. We recommend entering a mobile phone number because you may not be in your office every time you need to authenticate your account.

  1. Enter the phone number where you want to be contacted.
  2. Choose an authentication method.
    1. Send me a code by text message: This option is for mobile phones only. You will receive a six-digit code via SMS text message that you must enter online to verify your sign-on.


    2. Call me: You will receive a voice call and must select the pound (#) key to verify your sign-on.
Office Phone

Your office phone number is auto-populated from the Missouri State University directory. If you select this option you will receive a voice call and must select the pound (#) key to verify your sign-on.

Mobile App

This is the preferred authentication option. Download the Microsoft Authenticator app to get started.

  You must have a mobile phone to use this option. 

  1. Select Mobile app from the drop-down menu.
  2. Choose an authentication method.
    1. Receive notifications for verification: You will be prompted to configure your authenticator app. Once configured, you will receive a push notification on your mobile device that you must approve to verify your sign-on.


    2. Use verification code: You will be prompted to configure your authenticator app. Once configured, you will open the authenticator app to retrieve a six-digit code that you must enter online to verify your sign-on.


  3. See How to Set Up the Microsoft Authenticator App for more information. 

Step 2

  1. After you set up your first verification option in Step 1, you will be taken to the Additional security verification page. Here you can set up more verification options. It is highly recommended that you set up at least two (2) verification options in case your first option fails or you are unable to access the option you selected (such as an office phone). 


  2. In the below example, three (3) verification options have been set up: authentication phone with a Missouri State office phone number, authentication phone with a cell phone number, and authenticator app with an iPhone. 


  3. Once you have set up all of your desired verification methods, choose a preferred verification option at the top of the page. If you use an authenticator app, Notify me through app or Use verification code from app or token should be your preferred choice.

After setting up your first verification option in Step 1, you will see on the Additional security verification page that there is an option for an Authenticator app or Token.

A token is a key fob-like device with a digital display that can be carried on your keychain. It continually generates authentication codes that you can use to verify your sign-on attempts. If you would like to use this as an authentication method, please email InformationSecurity@MissouriState.edu to request a token. The Information Security office will then assign you a token and associate it with your account. Once you receive your token, you can return to https://aka.ms/mfasetup and select the Authenticator app or Token option, and select Use verification code from app or token as your preferred verification method.

How it Works

  1. Once MFA has been turned on for your account(s), you will be prompted to approve your sign-on attempts with the preferred verification option you selected in Step 2 above.


  2. If you are unable to authenticate with your preferred option you will be able to choose another authentication method from your selected options. Simply select Sign in another way to use a different method.


  3. Choose one of the available options to approve your sign-on attempt.

Once MFA has been turned on for your Office 365 account, you will need to authenticate every instance where you are signed into an Office 365 application. This includes:

  • Outlook on your desktop
  • The Outlook app on your mobile device(s)
  • Office 365 online
  • Any Office 365 mobile apps, such as OneNote, Teams, Groups, OneDrive for Business, and the Word, Excel, and PowerPoint apps.
  • The native email client on your mobile device, such as Mail on iOS. (The native Android email client cannot be used with MFA. Please download the Outlook mobile app instead).

Please contact the Information Security Office if you have any questions or concerns: InformationSecurity@MissouriState.edu

Resources

How it works: Azure Multi-Factor Authentication

Plan for multi-factor authentication for Office 365 deployments

Set up 2-step verification for Office 365

Use Microsoft Authenticator with Office 365



For questions or comments, contact the Computer Services Help Desk
HelpDesk@MissouriState.edu
417-836-5891