Registering your computer account for Multi-Factor Authentication (MFA) adds an extra layer of security beyond your username and password.
MFA requires a minimum of two verifications to access UFV resources like applications and online accounts.
Once enrolled, MFA also gives you the ability to reset your own password using Microsoft's self-service password reset (SSPR).
Note: Email can only be used for self-service password reset, so for MFA you will need to add another method, such as an authenticator app or security key.
1. Go to your Security info area at aka.ms/mfasetup.
2. Sign in with your UFV computer account.
3. Choose one of the following:
- If you see the prompt Your organization needs more information, click Next to register.
- If you do not see a prompt, click +Add sign-in method.
Choose a method
Use Microsoft Authenticator (recommended)
Use a different authenticator app
Use a Passkey
Use a Security Key (USB)
Method instructions
1. Download and install the Microsoft Authenticator app to your mobile device:
For Android: Google Play store
For iOS: App store
2. Go to your Microsoft Security info area at aka.ms/mfasetup.
3. Sign in with your UFV computer account.
4. Choose one of the following:
- If you see the prompt Your organization needs more information, click Next to register.
- If you do not see a prompt, click +Add sign-in method.
4. Select Microsoft Authenticator.
5. Approve sign-in requests or use one-time codes.
These may include Duo, Google Auth, or Twilio Authy, etc.:
1. Go to aka.ms/mfasetup.
2. Click Add sign-in method.
3. Select Microsoft Authenticator.
4. Select
3. Select Microsoft Authenticator - Approve sign-in requests or use one-time codes.
4. On screen, click: I want to use a different authenticator app.
4. Use your app to scan the QR code.
5. When you are done, click Next.
Note: Depending on the app, additional configuration options may appear.
To use passkeys to sign in with a PIN, facial recognition, or fingerprint:
1. Go to aka.ms/mfasetup.
2. Click +Add method.
3. Select Security key or passkey - Sign in with your face, fingerprint, PIN or security key (or if you have the Microsoft Authenticator app, you can choose Passkey in Microsoft Authenticator)
Note: To add a passkey, you must pass MFA. If you don't have any other MFA methods registered, contact the IT Service Desk for a temporary access pass.
4. Follow the on-screen prompts to set up your desired passkey.
Note: By default, Windows devices offer to save the passkey locally using Windows Hello, but you can select the option Use another device to save the passkey in one of the following locations:
- This Windows device: the passkey is saved locally on your Windows device, using Windows Hello (biometrics or PIN)
- iPhone, iPad or Android device: the passkey is saved on a phone or tablet, protected by the device's biometrics (if offered by the device). This option requires you to scan a QR code with your phone or tablet, so you should have it close by.
- Security key: If you have a physical security key, you can save the passkey to it.
A security key plugs into a USB port on your computer, and can be used to verify multi-factor authentication (MFA) or as passwordless sign in. They are recommended if you do not have a mobile device or do not want to use your mobile device.
1. Go to aka.ms/mfasetup
2. Click +Add method
3. Select Security key - Sign in using a USB, Bluetooth, or NFC device
Note: To add a security key, you must pass MFA. If you don't have any other MFA methods registered, contact the IT Service Desk for a temporary access pass.
4. Follow the on-screen prompts to set up your security key.
For more information on security keys, refer to Security Keys (FIDO2).