Multifactor Authentication (MFA) is an authentication method that requires the user to provide two or more verification factors to gain access to a resource such as an application, online account, or a VPN. Rather than just asking for a username and password, MFA requires one or more additional verification factors, which decreases the likelihood of a successful compromise.
How do I enroll in Multifactor Authentication?
Microsoft provides detailed instructions on how to Add your Work or School Account to the Microsoft Authenticator App.
If you have a smart phone or tablet, we require that you use the Microsoft Authenticator App. It is quick, easy-to-use, and secure.
Frequently Asked Questions
Why is my password not enough?
Passwords are increasingly easy to compromise. They can often be stolen, guessed, hacked, you could be locked out of your account or someone stealing your information without your knowledge.
With MFA, even if an attacker knows your password, they will not be able to access your account without a successful authentication request via the Microsoft Authenticator App.
What is the Microsoft Authenticator App?
The Microsoft Authenticator App is a mobile application (app) that you install on your smart phone or tablet to generate pass codes for login or receive push notifications for easy, one-tap authentication on your mobile device. It works with Microsoft’s Multifactor Authentication (MFA) service to make your logins more secure.
Can Microsoft see my password?
No. Your password is only verified by your organization and never sent to Microsoft. Microsoft provides only the second factor, using your enrolled device to verify it’s really you who is logging in.
Microsoft says I need the Authenticator App after my next 3 authentications but my phone isn't compatible with the app, what do I do?
As of September 2023, Microsoft is requiring all users with compatible devices to move to using the Microsoft Authenticator App for authentication requests. Some devices such as older phones may not be compatible with the app. If your devices is incompatible, follow the steps below.
1) If you receive this message, select I want to set up a different method at the bottom of the page.
2) Select Phone from the drop-down menu.
3) Input your cellphone number, select Text Me, then press the Next button.
Following these steps allows your phone to receive SMS Authentication Requests, which allow you to avoid using the Microsoft Authenticator App if your device is incompatible.
Does using the Microsoft Authenticator App give up control of my smartphone?
No. The Microsoft Authenticator app has no access to change settings or remotely wipe your phone.
Microsoft verifies the security of your device, such as OS version, device encryption status, screen lock, etc.
How much data does a Microsoft Authentication request use?
Microsoft authentication requests require a minimal amount of data -- less than 2KB per authentication. For example, you would only consume 1 megabyte (MB) of data if you were to authenticate 500 times in a month.
Does the Microsoft Authenticator App allow passwordless authentication?
The Microsoft Authenticator App allows passwordless authentication for all Microsoft365 products. Other TRU services may still require you to use your password.
To use passwordless authentication, on the Microsoft Authenticator App you will need to select your Thompson Rivers University account, then select the "Set up Phone Sign-In" section.
Your device will require a PIN, password, or pattern lock in order to be set up with passwordless authentication. Your fingerprint can also be used if your device supports the use of biometrics.
Will you pay for my phone plan?
No, TRU will not pay for your phone plan. If you do not have a phone plan, we suggest installing the app on an alternate device such as a tablet, which will still be able to receive push notifications and provide pass codes.
I've changed/lost my device and need to reactivate the Microsoft Authenticator App. How do I do this?
If you get a new phone, or if you’ve re-installed the Microsoft Authenticator App, you'll need to re-activate the app. You may enroll your new device yourself using the device management portal.
You will need to log in using a MFA device already configured to your account before adding a new one. If the device you are replacing is your only MFA device and you no longer have access to it, contact the IT Service Desk for assistance.
Can I have the Microsoft Authenticator App on multiple devices?
Yes, you can configure several devices on your Microsoft account via the device management portal. As well, multiple devices of the same type can be added.
Where can I find the Microsoft Authenticator App's Privacy and Security information?
I have a problem that isn't answered by any of the FAQ Questions, what do I do?