Multi-Factor Authentication (MFA)

Configuration Guide

MFA adds an extra layer of protection to ensure the security of online accounts beyond just a username and password. 

You can use enable and disable MFA (Multi-Factor Authentication) for your account here.

Once MFA is enabled on your account you will need to configure your 2nd factor of authentication. This can be a text message, a telephone call or using a mobile app to grant access.

Please note once MFA is enabled the Apps accessing office 365 based services (email, SharePoint, Teams and Skype for Business) on your desktop and/or mobile device may need to be reconfigured. 

How to configure your account

After MFA has been enabled, the first time you logon to a web-based Office 365 service (such as mail.lse.ac.uk, SharePoint online) you will be prompted to configure your account:

Configure your account

After clicking next you be prompted to select the type of authentication you would prefer to use.

“Mobile App” or “Phone” are currently available.

Microsoft Aunthenticator

The options for each are as follows:

  • Mobile App
  • Phone
  • App Passwords

LSE Recommend you set-up both the “Mobile App” and “Phone” methods of verification to ensure you always have access to your account.

 

Mobile App

“Mobile app” is the default option, and the LSE preferred option.

At this stage you will be prompted to down the Microsoft Authenticator App on your smart phone (this is available for free for both Apple and Android from the respective stores).

Do not delete this App, you will need it each time you access your account from a new device!

Once installed click Next.

*You can use other authenticator apps such as Google Authenticator if preferred by clicking “I want to use a different Authenticator App”. If using an app other “Microsoft Authenticator” the “Receive notification for verification” option below is not available.*

The options for the Authenticator App are “Receive notification for verification” or “Use verification code”.

A “Verification code” option is a number displayed to the app which you need to type into the website logon page.

The “Receive notification” option gets the app on your phone to prompt you to "Approve” or “Deny” the logon. Approving will complete the login process. This option is quicker and easier to use than typing the verification number.

Setting up Mobile App

  • Once the Authenticator is installed and open click “Next” on the “Start by getting the App screen”.
  • In the Authenticator App choose “add new account”, select “work or school account” if prompted.
  • You will be shown a QR code you can scan with our phone to link the App with your account:
Configure mobile app

Logging in:

  • If you are using “Receive notification for verification” a popup will appear as below when logging into Office 365, simply select “Approve” to continue with the log on process
Approve sign in
  • If using “Use verification code” you will be prompted to enter a code, you can get this at any time from the Authentication app, as below:
Verification code

Please note the code changes every 30 seconds, you will need to enter the code while it is still displayed on your phone

Phone

To use the “Phone” method of authentication you will need to select “I want to set-up a different method”.

The options for Phone are “Text me a code” or “Call me”.

Selecting “Text me a code” will result in a SMS message being sent to your phone revealing a one-time use verification code for you to enter.

The “Call me” option will result in a phone call with an automated voice asking you press a key to verify.  

Setting up “Phone” method

  • Select phone from the drop-down list, enter the phone number you would like to use, and tick either the “Text me a code” or “Call Me” option and select next:
phone code


Logging in:

  • If using “Send me a code by text message”, a SMS message will be sent to your phone. Enter the code contained to when prompted to complete the logon process.
  • If using the “Call me” option, the designated number will receive a phone call with instructions on how to proceed to verify your account. 

If you have any further questions, please contact Tech Support

 

App Passwords

App Passwords are used for applications that do not support MFA, such as:

  • Older version Microsoft Office (version 2010 or below).
  • Apple iOS (iOS  version 11 or below). 
  • Apple OSX Mail app (version 13 or below)
  • Older version of Android.

This should only be used when necessary.  

Please use the guidance HERE to create and manage App passwords.