Microsoft Multi-Factor Authentication 

 

What is it? 

Multifactor authentication (MFA) adds a layer of protection to the sign-in process. When accessing accounts or apps, users provide additional identity verification, such as scanning a fingerprint or entering a code received by phone. 

 

How will this affect me? 

MFA is very similar to the Self-Service Password Reset.  Once enabled, users will receive a prompt to enter verification methods every time they log in.   


Tutorial - Multi-factor authentication for B2B - Azure AD | Microsoft Docs 


Since users are required to enter that information for Self-Service Password Reset, many users will not be prompted for this information.  Upon the next login, the user will be prompted to verify their identity using their chosen method.  

 

Graphical user interface, application Description automatically generated 


 

Azure AD Multi-Factor Authentication prompts and session lifetime | Microsoft Docs 


Please note the option “Don’t ask again for 90 days”.  This option can be used for trusted devices to minimize the number of verifications.  Checking the box will mark the computer you are currently accessing as safe for 90 days, after which you will be prompted to verify again.  Please do not select this option on public computer systems.