Two-Factor Authentication (2FA)
What is 'Two-Factor Authentication (2FA)'?
Two-factor authentication (2FA) (or multifactor authentication [MFA]) is the second layer of security to protect your account. Users must go through two layers of security before being granted access to an account or system. 2FA increases the safety of online accounts by requiring two types of information from the user, such as a password and then a second form such as tapping "Approve" or "Deny" from a notification on your phone or typing in a code that was texted to you before the user can log in. The first factor is the password; the second factor is the additional item.
- Go register at when you are in front of a computer and have your phone available
- If you are often in areas of poor cell phone coverage, you should use the Microsoft Authenticator app. It can work in the absence of internet access. https://www.microsoft.com/en-us/account/authenticator
- Detailed setup instructions listed below the table
|Phone Call||A call is placed to your mobile phone asking you to verify that it is you signing in. Press the # key on your phone to complete the verification process.|
|Text Message||A text message is sent to your mobile phone with a 6-digit code. Enter this code to complete the verification process.|
|Mobile app notification (requires download of Microsoft Authenticator App on your phone)||A verification request is sent to your mobile phone asking your complete the verification by selecting Verify/Approve from the mobile app. This occurs if app notification is the primary verification method. If you receive this notification when you are not signing in, you can report it as a fraud.|
|Verification code with mobile app (requires download of Microsoft Authenticator App on your phone)||The mobile app on your device generates a verification code. This occurs if you selected a verification code as your primary verification method.|
|Secondary Email||Requires a second email account that is different from @mymail.eku.edu or @eku.edu|
Two-Factor Authentication (2FA) Setup
- Open a browser on your computer and go to http://aka.ms/mfasetup, then sign in.
- You will see the screen below. Click Set it up now
- In 'Step 1: How should we contact you' choose a Mobile app from the dropdown
- Make sure 'Received notifications for verifications' is selected then click Set up
- A 'Configure mobile app' screen should appear. Follow the directions on this screen.
- After you install the Microsoft Authenticator app, scan the QR code with the app to add the account. There is also a 'Code' listed that you can type in manually if you prefer. NOTE: If you are already using the Microsoft Authenticator app, open it, click the + sign in the upper right-hand screen, choose 'Work or school account' then scan the QR code.
- Click Next on the screen on your computer. NOTE: If you don't do these steps quickly enough it may say that authentication failed. Just do it again but be ready to click the Next button quickly.
- On 'Step 2: Let's make sure that we can reach you on your Mobile App device' you will need to approve the notification on the app
- In 'Step 3: In case you lose access to the mobile app' screen, add a phone number with country or region code that you will have access to then click Next.
- In 'Step 4: Keep using your existing applications' screen click Done.
- On the web login page, you will probably need to type in your password again. Click Sign in.
- The next screen on your computer will look like the left picture but on your mobile app, you will see a screen like the right picture. Click Approve on the app.
- On your computer, you will see this screen. We do not recommend staying signed in but that is up to you.