Microsoft MFA Update

Reading Time: 3 minutes

Share:

I wrote a blog almost two years ago illustrating what MFA (Multifactor Authentication) was and why you need it. As a quick recap, it is your (at least) two forms of authentication to a service. In that blog I described that users could visit this website to set up their MFA even before MFA is required to be used by the user. Microsoft has given that process a facelift and that is what we’re covering in today’s blog.

Upon login, the default options are to configure two additional forms of authentication to prove who you are.

  • App
  • Phone

MFA by App

Microsoft authenticator app

The first is by the app Microsoft Authenticator. First download the app to your phone and follow the instructions in this wizard driven approach to user set up.

MFA app

Once the app is downloaded, add a Work or school account, and scan the QR code on the screen inside of the app.

Microsoft Authenticator QR code

Your phone will be prompted for authentication, and you have just completed providing one additional form of authentication. Click next to continue on to the next form of authentication to provide.

MFA by Phone

Microsoft MFA by phone

Here Microsoft wants to set up a second form of authentication for you. Yes, the second form of authentication is on the same device, your cell phone. I highly recommend once the process is done to add another phone number for authentication that isn’t your cell phone. Your office phone would be a good option.

  1. Enter your cell phone number.
    enter cell phone number
  2. Microsoft will send you a text to your cell phone. Enter the code it sends below.
    phone code
  3. That process provides the second form of authentication that Microsoft is requesting here.
    phone registration successful
  4. Microsoft confirms that you are done with the minimum required to add additional MFA to your account.
    MFA confirmation
  5. After clicking done, the browser is redirected to your own security info showing what your methods for authentication are.
    security confirmation

Again, I highly recommend adding an alternate phone number that is not your cell phone to the possible authentication methods. Click Add method and choose alternate phone or office phone. Microsoft will call the number and ask you to press the pound sign to verify you are who you say you are.

MFA alternate phone

Cell phone alternatives

Obviously the first two forms of alternative authentication are heavily reliant on your cell phone. So, what happens when your cell phone is lost, stolen, or damaged and unusable?

Come back to this same link: https://aka.ms/MFASetup

At the bottom of the page it asks if you have lost a device? If so, you can initiate a process that will sign out of everywhere. You can also change your default sign in method to your office phone number and delete your other authentication methods (app and phone). Then get started on the process of a replacement phone.

missing phone recovery

Have any questions about the new MFA process from Microsoft? Please reach out to our security team at any time.

This publication contains general information only and Sikich is not, by means of this publication, rendering accounting, business, financial, investment, legal, tax, or any other professional advice or services. This publication is not a substitute for such professional advice or services, nor should you use it as a basis for any decision, action or omission that may affect you or your business. Before making any decision, taking any action or omitting an action that may affect you or your business, you should consult a qualified professional advisor. In addition, this publication may contain certain content generated by an artificial intelligence (AI) language model. You acknowledge that Sikich shall not be responsible for any loss sustained by you or any person who relies on this publication.

SIGN-UP FOR INSIGHTS

Join 14,000+ business executives and decision makers

Upcoming Events

Upcoming Events

View Calendar

Latest Insights

View All Insights

About The Author

Craig Schellenberg

Craig Schellenberg

Craig Schellenberg is a Senior Network Consultant at Sikich that works with businesses to improve their IT. Being detail oriented assists in his ability to design and deploy new solutions as well as troubleshoot complex issues. His primary areas of focus are virtualization and storage on premise (whether through VMware vSphere or Microsoft Hyper-V), Microsoft Cloud services such as Azure and Office 365, Microsoft SQL design and administration, backup/DR/Business Continuance, and network route/switch/firewalls. Craig holds many certifications including his MCSE (Microsoft Certified Solutions Expert) in Productivity, Messaging, and Cloud Platform and Infrastructure. Craig also holds multiple certifications of his VCP (VMware Certified Professional) including version 3, 4 (Data Center Virtualization), 5 (Data Center Virtualization), 5 (Desktop), Cloud, and 6 (Data Center Virtualization).

©2024 All Rights Reserved.   Privacy Policy   Disclaimer

white sikich logo