Why do I need to do this?
Cybercrime continues to rise and as a result it is increasingly important that your personal information and data is protected. MFA is being implemented in order to do exactly this, using a widely utilised security tool to help you authenticate who you are during a sign in process and keep personal and university data secure. This all operates on the same principle as when you receive a code by text to use your bank or have to approve the card you use when shopping online. Using an additional security method as part of MFA simply makes it that much harder for anyone to infiltrate your account.
Will I need MFA on campus?
No. Just an initial one-off sign up is needed.
What if I'm concerned about using my personal mobile phone for work?
Keeping your University account secure will protect both the organisation and your own personal data. Your personal mobile phone details are not used for any other purpose than protecting your account. By adding the Microsoft Authenticator App to your personal phone this is just providing a method to confirm who you are. The app is not used to manage or control your phone or provide any personal data.
When I provide my MFA sign up details/methods, will the University have access to this information?
Data is retained under GDPR and can only be used for the purposes for which the data has been given (in this case MFA). You have full access to remove or modify your MFA sign-in information here and should you leave the university all sign-in details will be automatically deleted on deletion of your user account.
Is there another way to be secure without using my personal mobile or email?
As a member of staff you must select at least one additional security method to your university password, however, if you cannot, or do not wish to use your personal mobile or email address, there are some other options available:
- You can create a separate personal email account specifically for this purpose - the IT Service Desk can support with this. The University will not have any control, access or responsibility in relation to the use or mis-use of this account. You may provide your university email address as a recovery address should you forget the password to this email account.
- You can use a University direct dial number, however, this will obviously prevent any off-campus access. NB: Do not use Reception numbers.
What is the difference between Microsoft Authenticator app (notification) and Microsoft Authenticator app (code)?
The Microsoft Authenticator App can function in two modes; one which provides an easy one click notification pop up, you click approve and your signin is authorised. The other mode is app code which provides a rolling 6 digit code that changes every 30 seconds, you need to enter the code before it changes. We recommend using the notification method as this is the quickest and easiest. If your device only gives you the code option ensure your default method is set correctly. Visit https://aka.ms/setupsecurityinfo and change the default option to Microsoft Authenticator – notification. Please note some phone phones do not support the notification method.