Business Class Email MFA Setup

Using Multi-Factor Authentication (MFA) with our business class exchange email

The page to enter your password will show your company’s custom background picture (if it doesn’t, please contact us to enable this additional security feature). Enter your email password to continue.

If your account is required to add additional information for MFA, you’ll see the following prompt:


Click Next and choose among the following additional methods to set up:

Primary

  • ·         Microsoft Authenticator
  • ·         Third party authenticator
  • ·         Phone Text Message

Secondary

  • ·         Phone
  • ·         Email

  

Microsoft Authenticator App


Your email will prompt you to set up Microsoft Authenticator by default. Microsoft Authenticator is an app that you can install from the relevant app store on your iPhone, Windows phone, or Android phone, though you can choose to use a different third-party authenticator app (Google Authenticator, Duo, Authy, etc.) if you already have a preferred one installed for OATH TOTP.

To set up Microsoft Authenticator, select Next and open Microsoft Authenticator on your phone (download from the store app if you haven’t yet). Click the + symbol at the top and, following the directions on the computer, select “Work or school account”, then “Scan a QR code” to use your phone to scan the QR code on the computer or “Sign in” to log into your email account on the phone. Either scanning the code or signing in will complete the setup. Proceeding on the computer, the system will then verify with a simple push notification – select Approve on the prompt to your phone to verify.

Microsoft Authenticator has two modes for authentication – Push Challenge and OATH TOTP. A Push Challenge notification will display a short code on the screen and will prompt for you to enter the code in the phone app – entering the correct code will approve the authentication request. OATH TOTP is the more common option that displays a 6-digit code for each account saved in the app – entering the current code in the prompt will approve the authentication request.

 

Third-Party Authenticator

If you choose to use a third-party authenticator instead of Microsoft Authenticator, select “I want to use a different authenticator app” on the default authenticator app page.


The look of each third-party authenticator app is a little different, but the process to add an account is generally the same. Click Next and your email will provide a QR code – using the authenticator app on your phone, select to add a new account (usually Add Account or + symbol), and the app will request to scan the QR code.


If scanning the QR code doesn’t work, click the “Can’t scan image” box and you’ll see the raw code to enter into the app (will need to select similar on the phone app for it to skip the QR code and ask for the raw code directly).

Once the QR code or raw code is entered into the app, the authenticator app on the phone will provide a 6-digit TOTP code – enter the code and select Next on the computer to complete the third-party authenticator setup.

 

Phone

The Phone option will ask for a phone number and request either a text or call to confirm ownership of the phone number entered.

 

Selecting text will deliver a text with a 6-digit code to the phone – just enter the code into the prompt on the computer to complete the setup. Selecting call will prompt an automated call to confirm (select #) or to deny (0# – if the phone number has a typo and someone else answered the call). Confirming the call will complete the setup.

 

Email

After setting up an authenticator app or phone, email will be available as a secondary MFA option (not available as primary, only secondary) by choosing “I want to set up a different method” at the bottom of the MFA setup prompt. Simply enter a personal email address and, similar to the text option, the system will email a 6-digit code and request the code to confirm ownership of the email address. This option is also available later as an additional backup MFA option.

 

Once you are done this process…

After you complete the MFA setup, when you login to your email you may be asked to provide the code after you enter your username and password.  This code will now be found in the method you selected during setup (Authenticator App, Text Message, or Email).  Remember, after selecting you primary MFA method you will be prompted for a second backup method (you can also select the Different Methods link at the bottom of the window to see the alternative Email or Text option). 

 

If you have any questions or trouble, please contact our support team at 302-464-0871.

About the author

Convey2web