Microsoft Multi-factor Authentication (MFA) creates an additional layer of security when logging into your Microsoft Office 365 account. This additional security is associated with something in your possession, such as a personal smartphone, that would be unavailable to someone who gained access to your Microsoft Office 365 account.
The first factor in MFA is your account password. The most convenient second factor option is to use the Microsoft Authenticator mobile app on your smartphone to approve the sign-in. Other options are detailed in “How does Microsoft Multi-factor Authentication (MFA) work?” that follows.
If the wrong code or no code is entered, your Microsoft Office 365 account cannot be accessed.
How does Microsoft Multi-factor Authentication (MFA) work?
Microsoft MFA requires that you specify how you want to provide the second factor as part of your Microsoft Office 365 account log in. Microsoft MFA provides the following second factor options:
- A (free) Microsoft Authenticator mobile app running on your iOS or Android smartphone that requests that you confirm your log in attempt. This is the most convenient option.
- A text message sent to your smartphone or SMS text-capable telephone providing a code to enter in the login window .
- An automated voice call to a designated telephone number providing a code to enter to sign-on.
Even if you are not familiar with Microsoft MFA, you’ve probably used MFA already if you’ve logged into a website that sent a code to your phone, which you then entered to access to your account.
What are the benefits of Microsoft Multi-factor Authentication (MFA)?
Microsoft MFA helps protect you by adding an additional layer of security, making it harder for attackers to log in as if they were you. Your information is safer because attackers would need access to both your password and code or authorization from your device or phone. By keeping your account secure, you will also help protect your school and your community by minimizing the opportunity for hackers to take advantage of unsecured accounts. In 2019, Microsoft reported that your account is 99.9% less likely to be compromised if you use MFA.
How to set up Microsoft Multi-factor Authentication (MFA)?
Your college IT department will provide information on whether it requires MFA and, if so, how and when to set up Microsoft Multi-factor Authentication for college or CUNY accounts. There may be a limited timeframe within which you must establish your MFA preferences to avoid getting locked out of your account—be sure to read and follow the MFA instructions as soon as you receive them.
You should always set up more than one MFA method (authentication app, SMS text, voice call) so that if one method isn’t working for any reason, a secondary option is available to you so you don’t get locked out of your account.
The following training and documentation resources are available on YouTube and the Microsoft website:
Set up multi-factor authentication with a mobile device (YouTube)
Setting up your verification methods
Managing your verification settings
Managing your connected devices
Setting up Microsoft Authenticator Mobile App
Signing into your Microsoft Account
You can find a list of CUNY-specific Microsoft Multi-factor Authentication FAQs in CUNY IT Help.
For help with using Microsoft Multi-factor Authentication, see the following Microsoft web pages:
For help with your login credentials, such as password resets and getting locked out of your account, contact your campus help desk.