Multi-Factor Authentication (MFA) for Staff
Multi-factor authentication (MFA) adds an extra layer of security when using online services. It requires users to provide more verification factors to gain access. This is often set up for online services that need extra security such as accessing your personal email or online banking.
At St. George’s, MFA will be required when accessing any Office365 app for the first time on a particular computer or device, such as Teams. Please note that once you have successfully signed in with MFA on a device, it will remember that device. You can select the 'don't ask again' option for the next 30 days so you will not be prompted to sign in with MFA every time you want to use an Office365 app. You will only be prompted for MFA when you are logging into Office365 apps from a new location/device or up to every 30 days.
How to set up MFA
A copy of this guide can be downloaded here (pdf).
You will be able to set up your Office365 additional sign-in methods prior to the IT department enforcing MFA on your Office365 account.
- You can then select an additional sign-in method from the following:
- Authenticator App
- Office Phone
- Security Key
The additional sign-in methods on this page below are ordered from our most preferred to least preferred. Therefore, we recommend the Microsoft Authenticator App as your primary additional sign-in method.
Note: You should add more than one multi-factor authentication method in the event your initial method is unavailable.
View all Close all
- Select United Kingdom (+44) and enter your office landline number and your extension number.
- Shortly, you will receive a call that begins with 4 clicks. You will then be prompted to press the Hash key to continue, followed by another prompt to press the hash key to verify the call.
- You will see a confirmation message of your call answered. Click Done.
Note: This additional sign-in method requires at least one other verification method set up beforehand. To use a security key for MFA, you will need to log a ticket with ITAV support to discuss how the other methods will not be sufficient as additional sign-in methods.
Note: To register a Yubi key you must use a browser that supports FIDO2 security keys, such as Microsoft Edge.
Sign in with a two-factor authentication.
Managing your MFA settings
Once you have signed in using multi factor authentication, you will not be prompted to authenticate again unless you are signing in on a new location or device. If you wish to add or change any of these authentication methods, for example changing a phone number, visit mysignins.microsoft.com/security-info. From the Security info page, you will be able to add, delete and change default sign-in methods.
Note: If you remove all MFA options whilst your account is enrolled into MFA, the next time you log in to Office 365 apps you will be prompted to add at least one additional verification method (see below).
What if I have already been enrolled into MFA without adding additional sign-in methods?
If your account has already been enrolled into multi-factor authentication without adding a second sign-in method, it will ask you for More information required the next time you log into an Office365 app. Click Next and enter your SGUL password to verify your login and continue. You can then choose how to set up your multi-factor authentication via a drop down menu.
If you require further assistance with regards to Office365 MFA, please contact ITAV Support or visit our helpdesk at J0.49 on Monday - Friday between 12 and 2 pm.