Multi-factor authentication

Important Facts:

  • MFA uses a phone (cell, office, landline) OR the Microsoft Authenticator app on your smartphone. 
  • You can set up more than one option.  If you are in an area without cell coverage and no wifi, you can setup a secondary phone number under Office.  This can be a landline or another cell phone, but it must be able to receive calls as the Office option will never use text messages.  This will allow you to have a second number that you can use to satisfy the MFA requirements in unique situations.
  • You check trust your device for 14 days by checking the box available during the MFA process.  This is very helpful for when you go into an area without cell coverage.
  • Cell numbers can receive texts OR calls for authentication.  It is HIGHLY recommended that you use a cell phone as it will be more likely to be with you at all times so you can continue to access your email as needed when off-campus.
  • The MS Authenticator app can provide a code OR allow you to simply answer a notification for authentication.
  • Using a personal device for authentication does NOT open an employee’s device to the Open Records Act.
  • The app password is used to make MFA easier.  This is a special, very long password that is used on trusted devices and apps that primarily are in your personal possession, such as Outlook for the desktop(only non-GTC owned equipment) and the phone you may use to access email and/or other Office 365 services.  Once you enter the app password for an application, you will not have to enter or change it again unless there is a security concern with that device (lost, stolen, etc).
  • Record the app password you receive when you first turn on MFA.  Save it in a secure location. Use that password to authenticate for email from your cell phone.

What apps use MFA at GTC?  Note, if not listed, MFA is not enabled for that system.

  • Office 365 logins, which includes webmail (email via outlook.com) for both students and employees
  • Microsoft OneDrive (students and employees)
  • Outlook on the desktop (employees)
  • Microsoft Teams (employees)

What other changes will I need to make?

  • If you didn’t record your app password when you signed up for MFA, follow steps below to create/manage MFA app password(s).
  • SAVE your app password.  It it critical that you save your app password.  While the computer login on campus is not affected by MFA, Outlook for the desktop will be (may take a few hours to come into effect).  You will need to have access to that app password to access your email.
  • Use the app password for Outlook on the desktop, MS Teams and your phone email app.
  • Be aware that, if you receive a request to authenticate a login and you were not logging in, this means your password has been compromised and you should change your password immediately.

How to update or change MFA app password

If you set up your MFA from a cell phone (maybe with the Outlook app) it did not create an app password for you. You will need to create one to be used for your email app and/or Outlook on the desktop. Outlook on the desktop off campus will NOT work properly without an app password.

To create/manage MFA app password(s), use this link or follow the directions below.

  1. Login to Office365.
  2. Click on your initial/picture at the upper right corner.
  3. Click My Account.
  4. Click Manage security and Privacy.
  5. Click Additional Security Verification.
  6. Click Create. Enter a name as prompted (the name isn’t important).
  7. The system will then create and show you the app password. Note that this WILL NOT BE SHOWN AGAIN, so copy it and put it in a safe place.
  8. Use the new app password for the mail app on your phone and Outlook on the desktop.

How to update or change MFA and Password Recovery Information

To register or update info for multifactor authentication and/or MS password recovery, use this link or follow the directions below.

  1. Login to Office365.
  2. Click on your initial/picture at the upper right corner.
  3. Click My Account.
  4. Click Manage security and Privacy.
  5. Click Additional Security Verification.
  6. Click Update your phone numbers used for account security.
  7. Update the information as needed and save.