What is MFA?

Multi-Factor Authentication (MFA) is an additional layer of security that is added to the login process. As part of our efforts to increase cyber security and to protect both institutional and user information online, MFA is required for all Microsoft 365 user accounts. 

MFA uses two or more factors to securely identify a user before accessing an app or a system. Factors include: 

  1. Something you know (such as a password or pin) 
  2. Something you have (such as a smartphone or hardware token) 
  3. Something you are (fingerprint, facial recognition or other biometric) 

MFA will be required to access your MtA user account on any Microsoft apps such as Outlook e-mail, Teams, SharePoint, etc. MFA will significantly increase Mount Allison’s cyber security and protect both institutional and user information online.

Follow our step-by-step guide to set up Multi-Factor Authentication. 

You can also sign up directly by visiting: https://aka.ms/mfasetup


FAQ

How do I setup up MFA? 

You can visit https://aka.ms/mfasetup to get started.

Follow our step-by-step guide to set up MFA.

We recommend having multiple methods set up to authenticate your account. 

When is MFA required? 

MFA is rolling out in phases. Beginning Wednesday, Sept. 6, students will be prompted to setup MFA to access their Mount Allison user account on any Microsoft apps such as Outlook e-mail, Teams, SharePoint, etc. We will share details about when MFA is required for other applications (like Moodle or Self-Service).

What happens if I do not set up MFA?  

If you do not set up MFA once it is launched across the university, you will not have access to any Microsoft 365 user account (such as Outlook email, Teams, SharePoint, etc.).

You will need to contact the Helpdesk for assistance. MFA will only be required for Microsoft 365 applications. It does not impact logging into other resources (such as Moodle, Self-Service, Colleague, etc.). 

Do I have to authenticate through MFA separately for each browser or device?

Yes. You will need to authenticate for each web browser (chrome, safari, etc.) or device (computer, tablet, phone) that you login to your Microsoft 365 account. Verification will initially take place every 7 days for each application. MFA will become less frequent once your sign-in patterns become more consistent. The purpose of MFA is to increase cyber security and reduce the number of compromised accounts

Which services do I need MFA for?

MFA is required to access your Microsoft Office 365 user account (such as Outlook e-mail, SharePoint, Teams, etc.).

How often do I have to do this extra verification step? 

The MFA verification process is new to Mount Allison and will be required for all Microsoft 365 applications moving forward. As we continue to roll out MFA and get users comfortable with the new verification method, MFA prompts may be more frequent initially for each application. Verification will become less frequent once your sign-in patterns become more consistent. MFA will significantly increase Mount Allison’s cyber security and protect both institutional and user information online.

What if I don’t want to use my personal phone or device or don’t own a smart phone?

There are other verification options available such as setting up a call to an office phone (landline) or using a hardware token (called a “YubiKey”). Your personal device is unique to you; therefore, you may find that the most convenient option to verify your identity is to download the Microsoft Authenticator app (or another authenticator app). If you do not have a mobile device, please contact Helpdesk@mta.ca

Can I share a YubiKey with another user? 

No. Only the token assigned to you will generate a valid code for your personal account(s).

My mobile device with the Microsoft authenticator app is lost or stolen. What do I do? 

Please contact the Helpdesk@mta.ca immediately to receive a one-time use access code.

My YubiKey is lost, stolen, or forgotten at home. What do I do? 

Please contact the Helpdesk@mta.ca immediately to receive a one-time use access code. 

How do I change or update my authentication methods? 

You can change your authentication settings by visiting: https://aka.ms/mfasetup. We recommend having multiple methods set up to authenticate your account.  

Do I have to go through MFA steps before I teach on a classroom podium computer? 

If you are signing into Microsoft 365, you may be prompted to authenticate your account.  

I am an international student or will be travelling abroad, which authentication method should I choose? 

We recommend downloading the Microsoft Authenticator app to your mobile device because it is the most secure method.

I received an MFA prompt, but I am not currently trying to sign into something. What do I do? 

Reject the authentication request by clicking on “No, it’s not me”.  Then, please contact Helpdesk@mta.ca immediately to investigate this further. When you are receiving a prompt, ensure that the MFA is legitimate by ensuring it follows the methods you originally set up to receive a notification. 

How do I change my default MFA method?

You can add or modify your MFA methods at any time by visiting: https://aka.ms/mfasetup.

I have questions that have not been answered here.

Please contact Helpdesk@mta.ca for further assistance.