Digital and Technology Services

Multi-Factor Authentication

Multi-Factor Authentication (MFA) increases the security of access to services by requiring multiple forms of verification.

 

 

What is MFA and when to use it?

MFA is used for extra security in addition to your university password. MFA is already required to approve access to a number of services (such as VPN, Virtual desktop and Remote desktop).

MFA is required by all staff, students and associates to access Microsoft 365 (Office 365) services.

  • For guests, MFA will be required from Thursday 23 June 2022

Information for Guests

If a member of the University of Nottingham shares data from Microsoft 365 with you, guests will soon be required to set up MFA as an added layer of protection. 

Guests will be asked to review permissions and provide security information. Download our MFA set up instructions for further details.

download
MFA set up instructions
 



How do I set up MFA?

If you have previously set up MFA (i.e for virtual desktop or VPN etc.), please skip to secure your Microsoft account.

Note, if you haven’t used MFA recently, we would recommend you check your chosen MFA settings - you can view and change these at any point.

In order to set up Multi-Factor Authentication (MFA), you will need:

  • A computer, such as desktop/laptop PC or Macbook, which will be used to set up your MFA account
  • A mobile device (mobile phone or tablet/iPad), which will be used to approve access
  • Your university login details

There are a variety of ways to approve authentication. This will depend on the device you have and your preferred method, as listed below: 

Authentication methods
MethodDescription
Microsoft Authenticator app This is the recommended method as it offers the best experience if using a smartphone. It can be used for push notifications or verification code.
Verification code This method can be used with the Microsoft app or other apps that can be installed on laptop or desktop PCs and doesn’t require internet. Use this method if you don't have a phone.
Text message This is a simple method, however it does require mobile phone signal to receive an SMS text. An alternative for those with no smartphone.

Select your preferred authenticator method below and follow the set up instructions. 

Microsoft Authenticator app
Verification
code
Text
message
 

 



Need help?

If you need help with the MFA set up instructions or have questions about the approval methods, you can ask our staff. We have a mix of on-campus, virtual and telephone support options. Find out more and see FAQs here: 

MFA help and support

 



Instructions to set up MFA

Follow the instructions below for your preferred authentication method. 

 

Approve access via Microsoft Authenticator app

Notify me though the Microsoft app

Follow the steps below in Part 1 and Part 2. You can also watch a video of these steps on MediaSpace.

Part 1 - Install Microsoft Authenticator from your app store (on your mobile device)

We recommend the 'Microsoft Authenticator' app because it is the only authenticator application that supports push notifications, which are required by some services and offers the best experience.

You may first need to set up an account on the relevant app store in order to download the app.

Download and learn more on the Microsoft website. 

If you are unable to use the 'Microsoft Authenticator' app, we can suggest some alternative apps and methods to approve MFA requests. Further information can be found here (log in required).

Part 2 - Configure MFA (on your computer and mobile device)

Once the 'Microsoft Authenticator' app is installed on your mobile device, visit the MFA configuration page, by clicking the below button, on your computer and then follow the steps below: 

Configure MFA

  1. You will need to login using your university email address and password. If you haven't set up MFA previously, you will then be prompted to enter additional information.
  2. Click 'Next'. This will take you directly to the 'Additional security verification' webpage.
  3. You will then be asked 'How should we contact you?' Select 'Mobile App' from the drop down menu, and check the option for 'Receive notifications for verification'.
  4. Click on the 'Set up' button. The Configure mobile app screen will appear with a QR code for you to scan with the Microsoft Authenticator app on your mobile device.
  5. Open the Microsoft Authenticator app on your mobile device, select Add account (+) on the Accounts screen and then Work or school account.
  6. Choose 'Scan QR code'. Use your mobile device's camera to scan the code displayed on your computer.

    Note: You may be prompted to allow the app to access the camera on your mobile device.  Please choose allow (or similar). If your camera isn't working properly, you can enter the QR code and URL manually.

  7. On your computer, click 'Next' on the Configure mobile app screen, and 'Next' again on the 'Additional security verification screen'.
  8. A notification will be sent to the app on your mobile device. Click 'Approve'
  9. Once approved, you will be prompted on your computer to enter a mobile phone number. It is highly recommended that you complete this.
  10. Enter your mobile phone number.

    Note: Users with a Chinese mobile phone number should not enter their phone number, and just click 'Finished'.

  11. Click 'Finished'.
  12. The set up is complete. Sign out by clicking on the email address in the top right-hand corner.
  13. Now move on and secure your Microsoft 365 account by completing this form.

Top tip: when using MFA to approve sign in requests, we recommend having the app open and ready.

 

 

Approve access via a verification code

Use verification code from app or token

Using the verification code method, you can set up an app of your choice on a mobile device or laptop / desktop computer. 

You may first need to set up an account on the relevant app store in order to download the app.

Part 1 - Install an authenticator app (on your mobile or computer)

Choose an authenticator app, here are some suggestions:

There are other apps available. Part 2 gives generic instructions for setting up the verification code method. However, we have more detailed guides on Workspace for Authy and WinAuth.

Part 2 - Configure MFA (on your computer and authenticator device)

Once the authenticator app of your choice is installed on your mobile device or computer (laptop / desktop), visit the MFA configuration page, by clicking the Configure MFA button, on your computer and then follow the steps below.

Configure MFA

Generic instructions

  1. You will need to login using your university email address and password. If you haven't set up MFA previously, you will then be prompted to enter additional information.
  2. Click 'Next'. This will take you directly to the 'Additional security verification' webpage.
  3. You will then be asked 'How should we contact you?' Select 'Mobile App' from the drop down menu, and check the option for 'Use verification code'.
  4. Click on the 'Set up' button.
  5. The Configure mobile app screen will appear with a QR code, you must click the 'Configure app without notifications'.
  6. Copy the Secret Key that is shown on screen.
  7. Open the authenticator app on your mobile or computer, select Add / Add Account (+).
  8. Paste or type in the Secret Key when asked for the 'Secret Key' or 'Enter Code given by the website'.
  9. The authenticator app should now display a six-digit code.
  10. On your computer, click 'Next'.
  11. Now click 'Verify now'.
  12. Enter the verification code that is displayed on the authenticator app.
  13. Click 'Verify'.
  14. This should complete the set up of the authenticator app and allow you to use it for code verification with Microsoft services.
  15. Once approved, you will be prompted on your computer to enter a mobile phone number. It is highly recommended that you complete this.
  16. Enter your mobile phone number.

    Note: Users with a Chinese mobile phone number should not enter their phone number, and just click 'Finished'.

  17. Click 'Finished'.
  18. Sign out by clicking on the email address in the top right-hand corner.
  19. Now move on and secure your Microsoft 365 account by completing this form.

Top tip: when using MFA to approve sign in requests, we recommend having the app open and ready.

 

 

Approve access via text message

Text code to your authentication phone number

Before you start, have your mobile phone ready and in range of signal to receive text messages.

Note: Users with a Chinese mobile phone number should not use this authentication method. Please use the Microsoft Authenticator app or Verification code as an alternative.

When ready, visit the MFA configuration page by clicking the below button on your computer and then follow the steps.

Configure MFA

  1. You will need to login using your university email address and password. If you haven't set up MFA previously, you will then be prompted to enter additional information.
  2. Click 'Next'. This will take you directly to the 'Additional security verification' webpage.
  3. You will then be asked 'How should we contact you?' Select 'Authentication phone' from the drop down menu.
  4. Select your country or region from the list and then enter your phone number.
  5. Then click 'Next'.
  6. You will be sent a text message from Microsoft with a verification code.
  7. Use the code in the text message on the next screen to verify your phone number.
  8. Once complete, you will get an SMS text message when MFA approval is required for Microsoft services.
  9. Click 'Finished'.
  10. The setup up is complete. Sign out by clicking on the email address in the top right-hand corner.
  11. Now move on and secure your Microsoft 365 account by completing this form.

Top tip: when using MFA to approve sign in requests, we recommend having your mobile phone ready.

 

 



Detailed user guides

Instructions with screenshots are available on Workspace via the link below (log in required):

Multi-Factor Authentication user guides

 


Secure your Microsoft 365 account with MFA

For students and associates only. Now that you have set up and configured MFA, you must secure your university Microsoft 365 account by completing the form linked below:

Secure Microsoft 365

This will enable MFA to approve access to Microsoft 365 services and make your account more secure. Visit the Securing 365 SharePoint site for further information and FAQs.

 


 

Self Service requests

Lock
MFA assistance
 

 

Related services

Windows Virtual Desktop
Virtual desktop
VPN
Virtual Private Network
location_on
Remote desktop
 

 

 

help

Need help?

If you're struggling please get in touch with the team
self service portal

Self Service Portal

Submit and track requests to solve your IT issues
check service status

Check service status

Updates on the University's core IT services
 

 

University of Nottingham

University Park
Nottingham, NG7 2RD

telephone: +44 (0) 115 951 5151
fax: +44 (0) 115 951 3666
email: Contact us