Microsoft Multi-Factor Authentication (MS MFA)

Available To

Students, Faculty, and Staff

Service Overview

Microsoft Multi-Factor Authentication (also known as Two-Step verification) adds a second layer of security to your log in to Microsoft (MS) services such campus email, OneDrive, and installed products including Office.  Multi-Factor Authentication means that when you log into certain campus applications, you provide two verifications of your identity.  

Verifying your identity using a second factor prevents anyone but you from logging in, even if they know your password.  A Two-Step Verification method is stronger than a password alone because two factors confirm that you are who you say you are:  something you know (your password) and something you have (a mobile device).  

Service Details

Students, Faculty, and Staff will be required to utilize Microsoft Multi-Factor Authentication (MFA) when accessing Microsoft products starting February 2021. CMS Human Resources, and CMS Enrollment Services Administrative users will also be required to use MS MFA when accessing CMS related services starting February 2021.

You will be prompted to use MFA each time you select a Microsoft or CMS related service through the Campus Single Sign-On (SSO) service.  MFA will also be required for Microsoft products you have installed on your computer or mobile device such as Outlook or Office; however, your MFA approval will be remembered and you won't be prompted again unless you've been inactive in that application for 90 days or you change your password.

Supported Second Factors 

Method Process More Information

Mobile App Push

Microsoft Authenticator App
(Recommended)

The Microsoft Authenticator app will present an on-screen option to approve or deny the log in request. Apple (iPhone, iPad, Watch) and Android (phone, tablet) devices are supported.

Download the app:

Google Play App Store Apple App Store

Verification Code  Microsoft Authenticator App
(Recommended)
The Microsoft Authenticator app will present a one-time code to use. For employees without a compatible device, a hardware token can be requested through your department Administrative Services Manager (ASM). (Due to remote work conditions, token programming and issuance is significantly delayed)
SMS/Text Message SMS (text) message to a mobile device You'll receive a SMS/Text message with a code to enter to complete the log in process. Text message charges may apply depending on your phone plan.
Phone Call Mobile or land line telephones You'll receive a phone call with a code to enter to complete the log in process. Phone charges may apply depending on your phone plan.

Pre-Register your Devices 

If you'd like to pre-register your device in advance, please click on the Register Now button below. This will speed up the initial account setup once MFA is turned on for your account.

register Now button

Initial Account Setup (If not Pre-Registered)

Upon first log in to any service requiring Microsoft Multi-Factor Authentication, you'll be presented with on-screen options to configure your device to accept MFA. These guides illustrate the process:

Configuring Your Account for Microsoft Authenticator App - Quick Start Guide
Configuring Your Account for Call/Text Messages - Quick Start Guide 

 

Services Requiring MS MFA

All University-provided Microsoft Services including: Campus email, OneDrive, Office, and SharePoint.
Common Management System Human Resources (CMS HR) - February 2021
Common Management System Enrollment Services (CMS ES) - February 2021