Microsoft Authenticator - FAQ
What is Multifactor Authentication (MFA)?
Multi-factor authentication (MFA) is a security process that requires users to provide two or more forms of identification before gaining access to a system or account, adding an extra layer of protection beyond just a password. Common factors include something you know (password), something you have (a smartphone or security token), and something you are (biometric data like a fingerprint).
What is Microsoft Authenticator?
Microsoft Authenticator is a mobile app developed by Microsoft that provides multi-factor authentication (MFA) capabilities. It generates time-based one-time passwords and supports push notifications for secure and convenient access to Microsoft accounts and other compatible services.
Microsoft provides the technology CVTC uses for MFA. Microsoft MFA allows you to use the following types of devices to perform multi-factor authentication:
- Smartphone/Tablet (Microsoft Authenticator app)
- Basic cellphone (text and call only)
- Landline telephone (call only)
Do I need to use my phone to authenticate?
No, you do not need a smartphone to use Microsoft MFA, but we strongly suggest you use the Microsoft Authenticator app on your smartphone or tablet if possible.
How do I edit my authentication methods?
You can edit your authentication methods through My Account. Click HERE for directions on how to access My Account and view/edit your methods.
Why is it recommended to use more than one method?
It is important to enroll more than one device in Microsoft MFA in case you cannot access your only enrolled device. For example, if you accidentally leave your cell phone at home, you could use your office phone, or tablet as a backup way to log in.
I have a new phone, what do I do? I lost my phone, what do I do?
If you do not have an alternate phone or device set up in My Account, you will have to call 715-830-5555 to get a temporary access code. If you do have alternate phone number(s) set up you can click I can't use my Microsoft Authenticator app right now and then choose one of your alternate methods to log in.
How do I change my priority/default method of authentication?
You can change your default method through My Account. Click HERE for directions on how to access My Account and view/edit your methods.
I am locked out, what do I do?
Please call the IT Service Desk at 715-830-5555 and we can unlock your account and help you get logged in.
What should I do if I don't recognize a login?
We recommend changing your password immediately. Click HERE for instructions on changing your password.
Is Microsoft Authenticator going to be part of the student account activation process like Duo? If so, when will it be listed as an option?
Currently, students are still being enrolled in DUO during the transition. We worked with Jess Schwartz and decided that the cutover date for all students will be May 20, 2024. After that date Microsoft Authenticator will be the only available option. We are working on some automation that might be able to make Microsoft the default for new students before then.
What options are available for students without a smart device? Is there a token option?
Students can choose SMS text or callback options which do not require a smart phone. As with DUO students may also obtain tokens at no cost by visiting Technology Services at BEC. We will also ship or drop them off at the other campus locations.
The number generating tokens used for DUO are not compatible with Microsoft Authenticator. They can be returned to IT or disposed of by the owner.
What is your recommendation for students who share the same phone number?
The phone will not work then because MFA is based around something unique to an individual. In that case they need to contact the Service Desk and we will manually program and provision a very specific type of token that solves this problem. This scenario however is no different than the experience today with DUO.
Related Articles