Enabling Two-factor authentication on office 365
Microsoft has now introduced Multi-Factor Authentication (MFA), which includes mandatory Two-factor authentication (2FA), in Exchange Server and Office 365. Enabling Two-factor authentication on Office 365, Microsoft 365 Business and Microsoft Office 365 Business Premium is now a compulsory requirement being enforced by Microsoft.
What is two-step verification?
Two-step verification helps protect your account by making it more challenging for anyone other than yourself to sign-in to your Microsoft account. Two-step verification requires you to use two different forms of identity:
1. Your password,
2. A contact method (also known as security info).
What does that mean for you?
Enabling Two-step verification means that if someone finds the password to your Microsoft account, they will be unable to gain access without the secondary form of security info. When logging in to your account, Microsoft will prompt for a 6-digit verification code to be entered, which is sent to your nominated phone number.
This security system is designed to stop the would-be intruder/s in their tracks and protect your information. Microsoft has also reiterated the importance of using different passwords for all your accounts, so if one account is accessed, other accounts and email are not compromised.
These security settings are also turned on by default on all new Office 365 for Business or Microsoft 365 Business subscriptions. New users will be required to set-up up multi-factor authentication (MFA) and install the Authenticator app on their mobile device.
Configuring Two-step verification
Once your admin enables your organisation with 2-step verification you will need to set up your account to use it.
- Sign into Office 365 with your work or school account with your password like you normally do. After you choose Sign in, you’ll see this page.
- Choose Set it up now.
- Select your authentication method and then follow the prompts on the page.
4. After you verify your alternate contact method, choose Next.
5. You’ll get an app password that you can use with Outlook, Apple Mail, etc.
Choose the copy icon to copy the password to your clipboard. You won’t need to memorize this password.
6. Once you complete the instructions to specify how you want to receive your verification code, the next time you sign in to Office 365, you’ll be prompted to enter the code that is sent to you by text message, phone call, etc.
To have a new code sent to you, press F5.
Two-step verification on Devices
Once Two-step verification for is turned on, you do not need to enter a 6 digit code every time you use an office application on your device, unless the device flagged as not-trusted.
You may be periodically prompted to re-enter a verification code. This occurs when certain conditions have been detected, such as no use, changes made, re-enrolment and scheduled authentication.
Two-step verification on Office 365 Online
Once two-step verification is activated on your account, you will have to enter a verification code each time you log in to office 365 online.
If you turn off two-step verification
two-step verification is not a vulnerability and the potential bypass does not exist on properly configured systems. If two-step verification is turned off, you will only have to verify your identity with security codes periodically, when there might be a risk to your account security and is not recommended.
Should you require any assistance configuring Two-factor authentication on office 365, need help finding out if your admin has turned on multi-factor authentication or are an admin trying to set up multi-factor authentication Teltech ICT can help, our ICT Department can be contacted on firstname.lastname@example.org