Set up: Multi-factor authentication (MFA) for O365

General Information

• Multi-Factor Authentication (MFA), also called 2-Factor Verification, is a way of verifying people logging into our systems are authorized to access those systems.
• Malicious and phishing email attacks are a constant threat for all organizations. Each individual who uses MFA helps to reduce the risk and vulnerability while also contributing to the overall security of our network environment. Through our Minnesota State Colleges and Universities O365 single tenant licensing, we have access to the Microsoft MFA solution.
• This solution helps to protect not only your account, but all of our data and applications connected to Office 365 within the shared Minnesota State tenant.

Question:

• What is Multi-Factor Authentication for O365?

Answer:

• Multi-Factor Authentication (MFA) is a form of authentication which employs a 2-step process, beyond just your password, to help verify you are actually the person who is logging in to your account. This second form of authentication verification provides another layer of added security protection.
• Once you have enrolled in O365 MFA, after entry of your MinnState credentials to log in to O365 applications, you will receive a notification via the MFA notification option you selected during set up (a text, a phone call, or mobile Microsoft Authenticator App verification) to verify it is you logging in to your account.

Question:

• How do I attain O365 MFA added protection?

Answer:

Follow these steps:

• Step 1) Review O365 MFA Verification Options section below to identify which option is most convenient for you.
• Step 2) Set up O365 MFA verification option with the instructions included below.
• Step 3) Select the Enable MFA (button) to complete MFA enrollment after steps 1 and 2 have been completed.
• See additional KB info "Additional: Multi-Factor Authentication for Office 365" article

Instructions

Step 1: Review O365 MFA Verification Options:

• Reviewing the MFA verification options first will help you determine which of the three options will be most convenient for you.
• Keep in mind you will need to have immediate access to the phone you will select for the verification option whenever you log into O365 applications.
• Provided you have a smartphone (iPhone, Android phone), it is highly recommended to use the Microsoft Authenticator app.
• If you have a regular cell phone without smart capabilities, use text or call.
• If you do not have a cell phone or do not wish to use your cell phone, your option is to use your office phone.

Verification Options:

• Option 1) Microsoft Authenticator Mobile App (iPhone, Android smartphone): See YouTube video and MinnState Video
  •  Contact Method Choices:
    • Receive notification for verification: Receive approval notification for verification sent to your smartphone.
      • Recommended smartphone choice, offering convenient one tap approval verification from your smartphone.
    • User verification code: Receive verification code sent to your smartphone
      • This option continually generates a verification code sent to your smartphone which requires you to accurately enter the code for verification.
• Option 2) Cell Phone (called Authentication Phone): Recommended option if you do not have a smartphone
  • Contact Method Choices:
    • Cell Phone Call: Robo call to your cell phone which requires you to tap “#” on your phone for verification
    • Cell Phone Text:  6-digit code text sent to your cell phone which requires you to accurately enter the code for verification
• Option 3) Office phone
  • Please be aware if you select this option you will always need to be in proximity of your desk phone during all authentication in to O365 applications.
    • Office Phone Call: Robo call to your desk phone which requires you to tap “#” on your phone for verification

Step 2: Set Up MFA Verification Option:

Tip: Before you begin setup it will be helpful to take a moment to review instructions provided in this article, in addition to iPhone or Android instructions (if you will be opting to use one of these devices for MFA).

• Option 1) Microsoft Authenticator Mobile App - Continue with Setup instructions, click on: iPhone or Android.
• Option 2) Cell Phone - Continue with the instructions below
• Option 3) Office Phone - Continue with the instructions below

Set Up for Cell Phone or Desk Phone

• Step A) On any computer with Internet access, use your favorite browser to navigate to https://minnstate.edu/mfa. Press Step 1: Setup MFA Verification Options button.

• Log in using your MinnState login credentials:

    Username:
        Students: StarID@go.minnstate.edu
        Employees: StarID@minnstate.edu
    Password:
        StarID password

• Step B) Once logged in, you will receive the prompt More information required. Click Next.

• Step C) Select the MFA verification option you would like from the drop down selections:
  • Authentication Phone (Cell phone) - see Figure 1
  • Office Phone (Desk phone) - see Figure 2

Step 3: Select the Enable MFA Button to Complete MFA Enrollment

• Once Steps 1 and 2 are completed, browse to the MFA Authentication Request Page and select Step 2: Enable MFA for <your name> button. Within 10 minutes, you will be prompted to sign in to O365 on any computer that is running any MinnState provided O365 service (e.g., Outlook, Word, OneDrive). If you are not connected to O365 at the time, you will receive the verification prompt the next time you try to connect. Enter your MinnState credentials. You will then be prompted to confirm MFA verification to complete sign in.

• You have completed setup for O365 MFA enrollment!

Summary:

This article is used to inform users of Multi-Factor Authentication (MFA) for Ofice 365.