As a response to the global cyber threat activity, we are making it mandatory for all customers using Office 365 to use 2-step verification aka Multi-Factor-Authentication (MFA) by way of a secondary security code to login to Office 365 accounts. This will ensure external cyber threat actors cannot compromise your Office 365 accounts and to reduce the chances further of you and your clients being affected by phishing attacks, CEO whaling and email fraud.
What Do I Have To Do?
Once we have enabled the MFA security setting on your account, the next time you login to any Office 365 application (both installed on your computer and through your web browser), you will be prompted to do the following:
1. We recommend using the Microsoft Authenticator app for 2-step verification and you will need to first install it on your mobile phone. Please choose the mobile phone app relevant to you and install it at https://amzsup.co/2YoBzPL.
2. On your computer browser visit https://aka.ms/MFASetup and sign in with your Office 365 work email address and password.
3. You will need to choose to use the “Mobile app” and “Receive notifications for verification” to receive the 2-Step verification requests. You can choose SMS if you wish and enter your mobile number but we recommend using the Microsoft Authenticator app, especially if you are already using it for MFA to login to your office workstations remotely. Then click Set up.
3. Open the Microsoft Authenticator app on your mobile phone, add a “Work or school account” and with your phone camera scan the QR code that you will see on your screen. If the App asks for camera permission please grant this. An example of the QR code you will see is below, but ensure you scan your own QR code on your screen and NOT the one in this article. Once the app displays a six-digit code, click Next.
4. It will now ask you to verify your app, click Next again and it will send a test approval to your mobile phone, for you to approve it in the Microsoft Authenticator app. Watch out for the notification and approve it. An example of what you will see is below.
5. Finally, enter your mobile number and be sure to select United Kingdom. Then press Next. This is only used as a backup but it’s very useful if you change your phone or lose the app.
That’s it…you are now setup for MFA and have cyber secured your Office 365 account!
What Happens Next?
As your Office 365 account has now been MFA enabled you will have to re-login to Outlook, Office and also any Office 365 apps on your phone, such as Outlook. When prompted enter your usual Office 365 email address and password and then approve the login on your phone using the Microsoft Authenticator app.
This two-step security process will occur when you re-login to Office 365 after 30 days, when you attempt to login from any new device or IP address, when your Office 365 password is reset and at any time there is a suspected security or account issue.
If you get stuck with any of the steps, please call our IT Support Team on 0203 728 2555 (press option 1) and we will be glad to walk you through the process.