Multi-Factor Authentication enhances security by requiring two or more verification methods, such as a password and a smartphone code, to confirm a user’s identity before granting access to an account.
If somebody manages to obtain your credentials they won’t be able to sign in without confirmation from your mobile device, it greatly increases security and is required for work accounts.
Pre-requisites
Before we get started you will need to download the Microsoft Authenticator app on your phone.
You can get it from the respective app stores:
iPhone: https://apps.apple.com/us/app/microsoft-authenticator/id983156458
Android: https://play.google.com/store/apps/details?id=com.azure.authenticator&hl=en
Note: Make sure the Authenticator app has ‘Notification’ permissions enabled, you can find the Notification permissions in your phones settings.
Setting up MFA
On your first sign in to M365, you will be prompted to setup MFA.
Click Next until you are presented with a screen displaying a QR code. Leave that on the screen for now.
On your mobile device where you have installed the Microsoft Authenticator app. Open it up, you will be prompted to sign in, you can sign in with your work account, a personal account, or you can skip the sign in. Signing in provides the option to back it up and makes it easier to transfer to a new device.
Once you are in the app, select the + button in the top right corner
Select Work or School account
Select ‘Scan QR Code’. This will open your camera within the Microsoft Authenticator app, now scan the QR code that is on your other device.
You should now see your account added to your authenticator app
On the device that is displaying the QR code, click ‘Next’. It will now test the authentication, it will display a number (in this case 42).
On your phone, you will have received a popup window asking if you are trying to sign in. Enter the number shown on screen and click ‘Yes’.
Click next on your other device, and all complete! Microsoft Authenticator has been setup for your account.
You will then be asked to add a phone number to your account, select your country code and enter your number
Select ‘Text me a code’ – once you receive the text, enter the provided code and click next, your phone number can also be used as a fallback method to authenticate sign-in.
Changed Your Phone?
If you have changed your phone, you can easily transfer the Authenticator to a new device:
How To Transfer Microsoft Authenticator To A New Device – Macnamara ICT