Two-factor authentication (2FA)

by on 15/02/2022 with No Comments

[This is an automated translation from Google Translate]

Passwords are a security mechanism intended to authenticate a user to a service when the user logs in. These are potentially weak and having only one password, even if it is strong, is not enough to keep us safe.

In this sense the UVic-UCC, like any other company or institution, can also be “attacked” at any time. It is for this reason that it has been decided to apply a new security measure, two-factor authentication (2fa), to access the O365 account that includes email, one of the most attacked services. This system provides additional security in the process of verifying the identity of the user, so that it is not enough for the password to log in, but also a code that is generated for each attempt.

Here we explain the different actions you can take:

 

 

 

Set up an authentication method

To do this we have three ways:

  1. Authentication application (Microsoft Authenticator).
    For security reasons, we will use this method preferentially.
    You can validate access to your personal account from an app notification.
  2. Authentication phone number.
    Once set up with your mobile phone you will receive an SMS message with the code to access your personal account.
  3. Application password (for mail management applications only).
    Create a password that authenticates your identity to validate access to your account through your email manager.

  1. Log in to Office 365 with your UVic account and password.
    After choosing Login you will be asked for more information.
  2. Choose Next and it will take you to the Additional Security Check.
    At this point it is recommended that, in Step 1: How can we contact you?, choose Mobile application.
    Then click Settings to configure the Microsoft Authenticator application on the mobile.
  3. The instructions to follow will appear below.
    After installing the application and adding Work or academic account you must scan the QR or enter the code to synchronize the UVic account with the application.
    Once the application is configured click Next.
  4. In this step you must verify the mobile application, accepting the notification that will arrive.
  5. You must then enter your mobile phone to protect your account in case you lose access to the mobile app.
  6. Also some apps don’t use your phone number to protect your account. Instead, you’ll need to use an App Password to sign in, as shown in the next step.
    Finally click Done and you will now have two-factor authentication set up in your UVic Office 365 account.

  1. Sign in to Microsoft 365 with your UVic account with your password as you normally would. After choosingSign in, you will be prompted for more information. To continue click Next.
  2. Next is the Additional Security Verification, it consists of three steps to be able to contact you:
    – Select authentication phone, default option. Select your country or region and enter your phone.
    – Select the method: Send me a code by text message.
    – Click Next.
  3. You will receive a text message with the verification code on your phone
    of authentication. Enter it and click Verify.
  4. Some apps don’t use a phone number to protect your account. Instead, you will need to use an App Password to sign in as shown in the image.
    Click Done and you’ve set up two-factor authentication on your Office 365 account.
  5. The next time you sign in, Office 365 will ask you to enter the code (sent to your mobile phone) to verify your identity. Here you can also check the box, in order to avoid this process for 30 days.

Important: After this process is complete, all sessions started with your account in Office 365 will end and you will need to sign in again.

  1. Enter the website https://mysignins.microsoft.com/security-info and click on Add themethod.
  2. In the drop-down Choose a method choose the option Application password.
  3. Choose a reference name for the application password.
  4. Once the password has been generated, it must be inserted in the desired mail management application. It is important to copy the password because once saved it will not be displayed again.

 

Add authentication method

To add another authentication method when we already have one configured, we must follow the following steps:

  1. Enter the website https://mysignins.microsoft.com/security-info.
  2. From this section we will be able to see the authentication methods that we have configured for our account, if we want to add any more we must click on Add a login method and follow the configuration indicated.
    For security, it is recommended to preferably use the authentication application Microsoft Authenticator.

&nbsp