How to set up Microsoft multi-factor authentication (MFA)

Overview

Multi-factor authentication is a process where a user is prompted during the sign-in process for an additional form of identification, such as entering a code on their cell phone or providing a fingerprint scan.

Before You Begin: Important Notes for All Purdue Career Account Holders

The instructions below will help walk you through the process of setting up Microsoft Authentication. For additional information, see the links to Microsoft's support page below.

• Note - This applies to all users with a Purdue Career Account (West Lafayette, Purdue Indianapolis, Fort Wayne, Northwest, Purdue Global, PARI, PRF). All will use their username@purdue.edu (even though their email address may be different.)
• Important - If you are:
  • A Purdue Dual Credit student at PNW using the PNW Google Suite
  • An employee at Purdue Global (@purdueglobal.edu)
  • An employee at PARI
  • An employee at PRF (@prf.org)
• You also have a Purdue Career Account and it is possibly named differently than the account you typically use in your respective tenant. If you were any the types of affiliations listed, you will need to follow these instructions in a private/incognito browser.

If you have not yet set up your Purdue Career Account, please follow the instructions at the linked article and return to these instructions once complete: Article - How do I setup my Purdue (W...

Instructions

1. Sign in to Microsoft 365 Sign-Ins at https://mysignins.microsoft.com/security-info page with your work or school account with your Purdue email and your Career Account password. (example: username@purdue.edu). Press Next to enter your password.

   •  

     

   • 

2. After you choose Sign in, you'll be prompted for more information. 

   

3. Choose Next.  You will be given options for setting up Microsoft Authenticator.

Microsoft Authenticator App

1. The default authentication method is to use the free Microsoft Authenticator app. If you have it installed on your mobile device, select Next and follow the prompts to add this account. If you don't have it installed, there is a link provided to download it. If you are not on this website on your phone, you will need to navigate to your app store and download the Microsoft Authenticator app instead of pressing the link.

   • 
2. Once the app is installed on your mobile device, press Next.
3. You will be prompted to make sure your notifications are on for Microsoft Authenticator and to select Work or School account when linking the account to Microsoft Authenticator.
   • 
4. Press Next on this page. You will be given a QR code to link the account to your device.
5. Open the Microsoft Authenticator app on your mobile device and press the + sign in the top right.
6. Press Work or School Account.
7. Press Scan QR Code and then scan the QR code displayed on the screen.
   • 
8. The account has now been linked to your device and will appear in your list as purdue.edu. Your email address will be listed underneath purdue.edu. Press Next on the website.
9. You will be prompted to practice using Microsoft Authenticator. To log in with Microsoft Authenticator, a 2-digit number will be displayed on the website. Open the Microsoft Authenticator app and you will be prompted to enter the 2-digit number.
   • 
10. If you successfully practice using MFA, you will be presented with this screen:
    1. 
11. Congratulations! You have finished setting up Microsoft Authenticator and can now proceed to log into Purdue SSO-protected websites.

Phone Number

1. • If you would rather use SMS messages sent to your phone instead, select "I want to set up a different method". Microsoft 365 will ask for your mobile number, then send you an SMS message containing a 6-digit code to verify your device. 

     • 

     • 

     • Once you complete the instructions to specify your additional verification method, the next time you sign in, you'll be prompted to provide the additional verification information or action, such as typing the verification code provided by your authenticator app or sent to you by text message. 

Hardware Token

If you are unable to use a phone for authentication, you can utilize a hard token FOB for MFA; to learn more about this process see: How do I obtain a physical token (FOB) for MFA?

Backing up Microsoft Authenticator 

While setting up Microsoft Authenticator, it is important to back up the authentication method in the event you lose, damage or replace your mobile device. Follow the instructions from Microsoft to back up your Authenticator App: Back up account credentials in Microsoft Authenticator. Failing to back up your credentials means you will need to contact the Purdue IT service desk to reset your app in the event you need to replace your phone. 

Additional help from Microsoft:  

• Set up your Microsoft 365 sign-in for multi-factor authentication 

• Set up the Microsoft Authenticator app as your verification method 

Additional resources: 

For more information see, including a list of frequently asked questions, see it.purdue.edu/mfa. 

Still need help?  Click the 'Purdue IT Request' button to start a ticket.