Introduction
Microsoft Office 365 uses Multi-Factor Authentication (MFA) as a security enhancement that requires a second form of verification when logging into Office 365 resources. Multi-factor authentication, sometimes referred to as second-step or two-step verification, requires you to authenticate using another method in addition to your username and password. Multi-factor authentication is required for all faculty, staff and student employees accessing Microsoft Office 365 resources.
Security Verification Methods
To Sign in to Office 365
There are multiple ways to complete the additional security verification, multi-factor authentication, and may be changed after the initial MFA set up in your Office 365 app settings found on the Office 365 portal. Below is a list of the methods to complete multi-factor authentication and a description of how the method is used. It is highly recommended to use the Microsoft Authenticator app on your mobile device, and in most cases is required. If you don't have a device capable of running the Microsoft Authenticator app, you should request an OIT Consultation for a possible solution.
| Method |
Description |
| Cell phone |
- Text message sent to your phone with a code to enter into the verification screen.
- A phone call asking you to approve access using your keypad.
|
| Office phone |
Do not select this option to add your office phone. This option is not enabled in the ISU environment. |
| Alternate phone |
This can be any “alternate” phone such as your office phone or another phone you normally use for work. |
| Microsoft Authenticator app |
- Download the app and use it to deny or approve a login request without having to type in a code or
- Use the code that refreshes every 30 seconds to access your account. (See the related article).
- Use your phone as a "passkey" to verify authentication from a computer or device that it is connected to.
|
Using Multi-Factor Authentication
The table below describes applications and instances of how Office 365 resources may be accessed that would require multi-factor authentication. You will be required to validate your authentication with Multi-Factor at least weekly, regardless of your device's location.
| Application |
ISU Assigned Computer |
ISU Owned Computer |
Personally Owned Computer |
Personal or University owned device (Android tablet or phone, iPhone, iPad ) |
| Office 365 portal (portal.office.com) |
Yes |
Yes |
Yes |
Yes |
| Outlook desktop client |
Yes |
NA |
NA |
NA |
| Outlook app (Android or IOS) |
NA |
NA |
NA |
Yes |
| Native email app (email app already installed on your device) |
NA |
NA |
NA |
*The Native email app might not support MFA.
|
| Microsoft Teams Desktop Application |
Yes |
Yes |
Yes |
Yes |
| Office 365 via MyISU portal |
Yes |
Yes |
Yes |
Yes |
Additional Resources
See Related Articles for information about enrolling in MFA and editing your settings.