Multi-factor authentication
Multi-Factor Authentication (MFA) is an extra level of security which makes you safer when logging into our digital platforms.Every student needs to use MFA, a process where you are prompted during sign-in for an additional form of identification. Many online services use MFA such as making a payment using a banking app or logging into accounts on Facebook and Twitter.
When we require a second form of authentication, security is increased as this additional factor is not something that's easy for an attacker to obtain or duplicate. It helps protect our users and the University’s data.
MFA helps safeguard access to data and applications while maintaining simplicity when signing in. It provides additional security by requiring a second form of authentication and delivers strong authentication via a range of easy-to-use authentication methods.
Setting up an MFA compatible authentication method
Before you start, you will need:
- Your mobile phone.
- A second device (e.g., laptop) with a browser that is not your mobile phone.
To set up Multi-Factor Authentication:
- From the second device (e.g. laptop or desktop PC) go to: https://aka.ms/mfasetup
- If prompted, log in to your University Microsoft 365 account using your Edinburgh Napier email address and password.
- Click Add sign-in method.
- Choose either ‘Authenticator app’ or ‘Phone’ from the drop-down menu and follow the on-screen instructions to register your sign-in method.
- Where possible we recommend you use the Microsoft Authenticator app on an Android or iOS device. You will need to download the Authenticator App from the Apple or Google Play store first.
- You can add multiple authentication methods if you wish.
- The ‘Security questions’ option is not compatible with MFA so if this is an option you have selected make sure you have an additional method set up.
Updating your MFA device or method
Do you have a new device? If so you can change your device or authentication method yourself at any time by going to https://aka.ms/mfasetup (you can also do this at: https://mysignins.microsoft.com/security-info).If you get a new mobile device and still have the old device please update your MFA method while you still have access to the old device.
If you have a new mobile device and don't have access to your old device, then you should contact the IS Service Desk to request for your authentication method to be reset. This will enable you to set up your new device with an authentication method.
Frequently Asked Questions
What MFA compatible authentication method should I use?
What is the Microsoft Authenticator app?
The Microsoft Authenticator app allows enterprises and educational institutions around the world to perform MFA.
You can also use the Microsoft Authenticator app to secure other accounts, such as your Facebook and Twitter accounts.
You can download the app onto an Android or iOS device from the app store you normally use.
The University uses the Microsoft Authenticator app for MFA purposes only. By installing the app and syncing your University account you are not providing us with any personal data or means through which to control your device.
You'll need to use the app each time you're asked to use MFA, so don't delete the app once MFA has been set up.
Find out more about using the Microsoft Authenticator app on the Microsoft website.
I already have an authenticator app, but it isn’t the Microsoft one, can I use it?
However, push notifications, where you can simply click approve or deny are only available on the Microsoft Authenticator app. If you use a different app, you will need the app to generate a 6-digit verification code that can be entered in the sign-in interface.
The Microsoft Authenticator app is the only authenticator app supported by the University.
How do I check what MFA compatible authentication method I have set up?
- Go to: https://aka.ms/mfasetup
- If prompted, log in to your University Microsoft 365 account using your Edinburgh Napier email address and password.
- The authentication methods you have set up will be listed.
How do I set up an MFA compatible authentication method?
Before you start, you will need:
- Your mobile phone.
- A second device (e.g., laptop) with a browser that is not your mobile phone.
To set up Multi-Factor Authentication:
- Go to: https://aka.ms/mfasetup
- If prompted, log in to your University Microsoft 365 account using your Edinburgh Napier email address and password.
- Click Add Method.
- Choose either ‘Authenticator app’ or ‘Phone’ from the drop-down menu and follow the on-screen instructions to register your sign-in method.
- Where possible we recommend you use the Microsoft Authenticator app on an Android or iOS device.
- You can add multiple authentication methods if you wish.
- The ‘Security questions’ option is not compatible with MFA so if this is an option you have selected make sure you have an additional method set up.
Why is the ‘Security questions’ authentication method not compatible with MFA?
Microsoft do not allow the ‘Security questions’ to be used for MFA as they can be less secure than other authentication methods because some people might know the answers to your questions.
I don’t have a smart phone or an Android or iOS tablet, can I still set up MFA?
One of the MFA compatible authentication methods is text messaging, this can be used when you don’t have a smartphone.
- Go to: https://aka.ms/mfasetup
- If prompted, log in to your University Microsoft 365 account using your Edinburgh Napier email address and password.
- Click Add Method.
- Choose ‘Phone’ from the drop-down menu and follow the on-screen instructions.
If you do have a smartphone then we recommend using the Microsoft Authenticator app wherever possible as it is more reliable, secure and convenient. Also, the Microsoft Authenticator app does not rely on the strength of your phone signal like the text message authentication method does.
I don’t have a mobile phone, can I still set up MFA?
I have tried to set up an MFA compatible authentication method, but I can’t, what should I do?
How do I change my MFA authentication method or device?
You can change your authentication method or device yourself at any time by going to https://aka.ms/mfasetup (you can also do this at: https://mysignins.microsoft.com/security-info).
If you get a new mobile device and still have the old device please update your MFA method while you still have access to the old device.
If you have a new mobile device and don't have access to your old device, then you should contact the IS Service Desk to request for your authentication method to be reset. This will enable you to set up your new device with an authentication method.
I've lost my device; how do I change my MFA settings?
This will enable you to set up a new device with an authentication method.
I live in China, will setting up MFA be different for me?
The Microsoft Authenticator app is available on the Lenovo, Huawei and Samsung Galaxy app stores. Please see Microsoft’s advice: Authenticator for Android in the public cloud in China
Can I choose not to use MFA?
No, all students need to use MFA. It helps protect you, other users and the University.
If you have circumstances that prevent you from using MFA, please contact the IS Service Desk.
When will I be asked to use MFA?
MFA is required whenever you access your University Microsoft 365 account (including your email and calendar) and other online University systems such as Moodle, Library eResources, the Edinburgh Napier app and myFuture.
MFA will learn where you access from and the web browser and device you use so that you will have to perform MFA less often.
When I am on campus will I be asked to use MFA?
I have received an unexpected MFA verification notification, what should I do?
This could be an indication that your account has been compromised.