Office 365 Token Authentication

Introduction

A hardware MFA token is a device that may be used to complete Office 365 multi-factor authentication (MFA) in certain circumstances when a smartphone application or telephone call do not work.  

For example, when a person is traveling and does not have cellular connectivity nor a smartphone with the Microsoft Authenticator application installed but does have access to a computer connected to the Internet.  In this case, the hardware MFA token​​​​ will provide the code that synchronizes Microsoft’s directory services with the username and password pair for authentication. 

The hardware MFA token is not bound to cellular or Internet connectivity. 

Purchase Information

Hardware MFA token tokens are available for purchase on numerous web sites.  Please make sure your token complies with the required specifications listed below.  

Required Specifications

  • Internet Engineering Task Force (IETF) Request for Comment (RFC) 6238 ensuring it is certified to work with Microsoft Azure MFA server or the Office 365 cloud service enabled with multi-factor authentication with Azure MFA.

 

Registration

Take your hardware MFA token to the Technology Support Center located in the Stalker Hall basement and inform a service technician that you have a hardware MFA token you need to register to your Office 365 account. 

You will be asked to provide a valid form of identification in order for OIT to ensure we are configuring the OAUTH token for a valid ISU employee/student.  Once TSS personnel confirm your identity, a service request is created that will include your token information.   

You will be able to use your token within 5 days of the service request.

Additional Resources

See related articles for more information.