Registering your UFV account for Multi-Factor Authentication (MFA) adds an extra layer of security, protecting your UFV account from unauthorised access.
Once enrolled, MFA also gives you the ability to reset your own password using Microsoft's self-service password reset (SSPR).
Note: Email can only be used for self-service password reset, so for MFA you will need to add another method, such as an authenticator app or security key.
1. Go to aka.ms/mfasetup.
2. Sign in with your UFV student email address.
3. Start registration by one of the following ways:
- If you see the prompt Your organization needs more information, click Next to register.
- If you do not see a prompt, click +Add sign-in method.
4. Choose a method:
5. Follow the on-screen prompts to complete registration.
For detailed instructions, see below or visit the MFA knowledgebase.
Method instructions
- Install the Microsoft Authenticator app on your device
- Go to aka.ms/mfasetup
- If you see the prompt Your organization needs more information, click Next to register.
- If you do not see a prompt, click +Add sign-in method.
- Select Microsoft Authenticator - Approve sign in requests or use one-time codes
- Follow the on-screen prompts to complete registration.
These may include Duo, Google Auth, or Twilio Authy, etc.:
- Install the Microsoft Authenticator app on your device
- Go to aka.ms/mfasetup
- If you see the prompt Your organization needs more information, click Next to register.
- If you do not see a prompt, click +Add sign-in method.
- Select Microsoft Authenticator - Approve sign in requests or use one-time codes
- On the Microsoft Authenticator setup screen, click: I want to use a different authenticator app.
- Use your app to scan the QR code provided.
- Follow the on-screen prompts to complete registration.
- Note: Depending on the app, additional configuration options may appear. Follow the instructions provided by your app to complete the setup. UFV can provide support for the Microsoft Authenticator app. For other apps, support from the IT Service Desk is provided at best-effort only.
Passkeys let you sign in with a PIN, facial recognition, or fingerprint:
- Go to aka.ms/mfasetup.
- Click +Add method.
- Select Passkey in Microsoft Authenticator
- Note: To add a passkey, you must pass MFA first. If you don't have any other MFA methods registered, contact the IT Service Desk for a temporary access pass.
- Follow the on-screen prompts to set up your desired passkey. You can choose to save the passkey in one of the following locations:
- This Windows device: the passkey is saved locally on your Windows device, using Windows Hello (biometrics or PIN)
- iPhone, iPad or Android device: the passkey is saved on a phone or tablet, protected by the device's biometrics (if offered by the device). This option requires you to scan a QR code with your phone or tablet, so you should have it close by.
- Security key: If you have a physical security key, you can save the passkey to it.
A security key plugs into a USB port on your computer, and can be used to verify multi-factor authentication (MFA) or as passwordless sign in. They are recommended if you do not have a mobile device or do not want to use your mobile device.
- Install the Microsoft Authenticator app on your device
- Go to aka.ms/mfasetup
- If you see the prompt Your organization needs more information, click Next to register.
- If you do not see a prompt, click +Add sign-in method.
- Select Security key - Sign in using a USB, Bluetooth, or NFC device
- Note: To add a security key, you must pass MFA. If you don't have any other MFA methods registered, contact the IT Service Desk for a temporary access pass.
- Follow the on-screen prompts to register your security key.