What is Multi-Factor Authentication (MFA)?
Multi-factor authentication (MFA) is a method of verifying who you are that requires the use of more than just a username (or email address) and password. Using MFA for Office 365, you are required to acknowledge a phone call, text message, or app notification on your smartphones after correctly entering their passwords. You can sign in only after this second authentication factor has been satisfied.
MFA works by requiring both of the following authentication methods:
- Something you know (typically a password)
- Something you have (a trusted device that is not easily duplicated, like a phone)
MFA is only required for off-campus access to Massasoit services. MFA is not required when logging in while you are on-campus.
What Authentication Methods are Available?
- Mobile App (Microsoft Authenticator)
- Mobile app notification -- With this option, you will receive a prompt from the Microsoft Authenticator app as a second form of authentication.
- Mobile app code -- With this option, you can retrieve a six-digit code from the Microsoft Authenticator app. Other apps, like Google Authenticator or Authy, can be used with this option as well.
- Phone number
- Text message to a mobile phone -- When a second authentication factor is required, you can have a six-digit code texted to your mobile phone.
- Voice call to any phone number -- With this option, you will receive a voice call when a second authentication factor is required and can respond by pressing # on the phone when prompted.
- Email
- With this option, you will receive an email that includes a six-digit code. You cannot use your Massasoit email as your authentication email. You can use any other personal email you have access to. Bear in mind that the email address will only be able to be used for password resets, not as a second form of authentication for logging in.
- USB or NFC Security Key (YubiKey)
- A security key can be plugged into a computer and used as an authentication method along with a unique PIN. This method is an alternative for those who don't have access to a phone.
How Many Authentication Methods Do I Need to Setup?
At least two of the authentication methods listed above will need to be registered when initially signing in.
How Do I Set Up MFA?
After MFA is turned on on your account, you will be prompted to set up two authentication methods before you will be able to access your account. See our instructions at MFA - Initial Multi-Factor Authentication Setup to get an idea of what the process will look like.
How Do I Change My Authentication Methods After They've Been Setup?
See our article MFA - Verify & Change MFA Methods on how to add, change, or delete your authentication methods.
What If I Don't Have a Cellphone or Mobile Device?
For students without a cellphone or mobile device, we also support an alternative method of MFA using a physical key called YubiKey (similar to a usb drive).
YubiKeys can be applied for and acquired through the Dean of Students office. To apply for a YubiKey, please fill out the request form here: https://cm.maxient.com/reportingform.php?MassasoitCC&layout_id=83
After acquiring a key, please stop by the Help Desk in T544 in the T building for ITS to enable the key on your account.