Changes to the MFA login process

To make sure the University and your data is kept secure from potential cyber threats, Microsoft have updated their security measures.

From early February, all those using the Microsoft Authenticator app push notifications will need to ‘number match’ instead of simply approving the request.

Microsoft are making these changes to the way push notifications work via the Authenticator app, to enhance MFA security and reduce the likelihood of attackers gaining access to an account by repeatedly triggering MFA notifications.

Notifications received via Authenticator will now also feature ‘app context’ which will display clearly which application is requesting MFA verification.

How to approve

1. Sign in with your credentials as normal.
2. If MFA is required and you use the Microsoft Authenticator App, you will be prompted to ‘Open your Authenticator app, and enter the number shown to sign in’.
3. Open the Microsoft Authenticator app on your mobile device and enter the number as requested and click Yes or the tick to confirm.
4. Your mobile device may ask you to confirm your devices pin or use your registered fingerprint or biometrics to continue.

Please note:

• Microsoft has ceased support for Authenticator via iWatch. Other smart watch models are also likely to be affected as they will be unable to support number matching, so please ensure you have the app installed on your mobile device/tablet/smartphone.
• Users who have MFA set up to call their phone or set to the verification code method will see no change to their MFA process, but for extra security and ease-of-use we highly recommend setting up the Microsoft Authenticator App. Information on how to do this is available on the portal.
• Authy users will be unaffected by these changes.