Multi-factor authentication

What is MFA?  

Multi-Factor Authentication (MFA) is applied to make sure you are who you say you are when signing in. It adds an extra layer of security and helps stop malicious hackers from pretending to be you.

Many of you will be familiar with MFA from using banking or some shopping services at home.

Why do I need to register for MFA?

All staff are required to register with Microsoft’s Multi Factor Authentication Service to enable access to corporate systems from an external location whether this be via the Temporary Remote Access solution or when accessing cloud based services, such as Microsoft Office 365 and Teams.

How do I register for MFA?

Follow the steps in this User Guide to complete the MFA registration process.

Each time you login, along with your normal username and password, you need to enter a six digit code, which is sent via a text to either your work or personal mobile phone. 

Please note:

  • To receive MFA authentication codes you need a mobile phone. This works with both business and personal mobile phones (any operating systems - Android, Apple or Windows – to receive a text message)
  • You have the choice of having the MFA code sent to you via text message when needed or you can install an App which will send notifications. Please note that Windows business phones no longer have access to the App Store and will therefore need to opt for receiving codes by text message

What will happen after MFA registration?

Once you have followed the instructions and secured your account, next time you login from a corporate connection it will already recognise you are logging in from a trusted site (e.g. corporate network on corporate device) and additional information beyond your user login name and password will not be required.

When accessing services from outside of the corporate network (e.g. Temporary Remote Access via home broadband/Wi-Fi), then you will be asked to verify your identity and enter a six digit code.

Help and Support

I’m not getting the verification code sent to my mobile device.

  • Restart your mobile device – The restart will end any background processes or services running, along with refreshing your device’s core components.
  • Verify your security information is correct – make sure your verification method is accurate, especially numbers. If you put the wrong number all of your alerts will go to that incorrect number. That user won’t be able; to do anything with the alerts, but you also won’t be able to sign in to your account. See these instructions for assistance.
  • Verify your notifications are turned on – make sure your mobile device has notifications turned on and that you’ve selected a notification method that allows for text messages to send an alert to your mobile device.
  • Make sure you have a device signal/internet connection – make sure your calls and text messages are getting through to your mobile device (do a test). If your device is turned on but you’re still not getting calls/texts then it’s most likely a problem with your network and you’ll need to liaise with your network provider. If you often have signal related problems then we would recommend you install and user the Microsoft Authenticator App on your mobile device. The authenticator app can generate random security codes for sign-in, without requiring a signal/internet connection.

I’m having problems signing in on my mobile device whilst travelling.

We recommend you install and use the Microsoft Authenticator App on your mobile device with an option to connect to a Wi-Fi.

How do I add a new mobile device/phone number?

You’ll need to update your security verification method details so your verification prompts go to the right location. To update your verification method follow the steps in Add or Change Your Number section of Manage your verification method settings guidance.