Microsoft MFA Information

Overview

Multi-factor authentication (MFA), also known as two-step login, adds an extra layer of security to your University account. UL Lafayette uses Microsoft MFA to help protect your account from unauthorized access.

MFA requires two or more of the following:

1. Something you know – your password
2. Something you have – your phone or device
3. Something you are – a biometric factor such as a fingerprint

Even if someone steals your password, they cannot access your account without the second factor.

How MFA Works

When logging into an MFA-enabled service using your ULID@louisiana.edu and password, you will be prompted for an additional verification step. Options include:

• Push notification from the Microsoft Authenticator app
• Text message with a one-time code
• Phone call to your mobile or landline
• Passcode generated by an Authenticator app
• USB Security Key (FIDO2 key)

You will be prompted to set up MFA the first time you log in.

Who is for? At this time, two-step login is available as part of your individualized login experience.

Why should I use it? Strong passwords are essential, but they are not enough. Phishing attacks and data breaches put your personal and university data at risk. MFA provides an additional layer of security for your ULID account and protects your privacy and personal information.

Available Verification Methods

UL Lafayette supports several verification methods. You can register multiple methods so you have backup options in case one is unavailable.

Microsoft Authenticator App (Recommended)

• Best for: Fast, secure sign-in from your smartphone.
• Setup:
  1. Install the Microsoft Authenticator app from the App Store (iOS) or Google Play (Android).
  2. Sign in to mysignins.microsoft.com/security-info with your ULID@louisiana.edu credentials.
  3. Click Add method → Authenticator app → Add.
  4. Follow the prompts to scan the QR code and complete setup.
• You’ll receive a push notification to approve sign-ins.

Other Authenticator Apps

If you prefer, you can use other authenticator apps that generate time-based one-time passcodes (TOTP), such as Google Authenticator, Authy, or the Authenticator.cc browser extension. These apps work similarly by scanning the QR code during setup and generating codes you enter to verify your login.

Note: While Microsoft Authenticator offers push notifications for quicker approval, other authenticator apps provide a reliable alternative if you prefer not to use Microsoft’s app or want an additional backup method.

Phone (Call or SMS)

• Best for: Users without a smartphone app.
• Receive a phone call or text message with a code.
• Set up via Add method → Phone in your security settings.
• Warning: If you lose access to your phone and have no backup method, you will be locked out until your MFA is reset by the IT Service Desk.

USB Security Key (Most Phishing-Resistant)

A USB Security Key (FIDO2 key) is the quickest, most phishing-resistant method. It can be set as your default sign-in method.

Setup Instructions:

1. On a laptop or desktop computer, go to mysignins.microsoft.com/security-info and sign in with your ULID@louisiana.edu and password.
2. Verify with an existing method if prompted.
3. Under Security Info, click Add method.
4. Choose Security key → Add.
5. Select USB device (or NFC device if your key supports near-field communication) → Next.
6. When prompted, insert the key into a USB port (or tap it for NFC) → Next.
7. If first time use, create a PIN when asked, then touch the key’s metal contact.
8. Name the key clearly (e.g., “YubiKey-primary”) → Done.

Authenticator.cc Browser Extension (Alternative MFA Option)

If you prefer storing codes in your browser, Authenticator.cc is a free, open-source browser extension that can store and generate MFA codes.

• Website: authenticator.cc
• Supported Browsers: Chrome, Edge, Firefox.
• Works with the same QR codes used for the Microsoft Authenticator app.
• Note: Not officially supported by Microsoft but works for personal convenience.

Setup Steps:

1. Install the extension from your browser’s store.
2. When setting up MFA for your account, choose Authenticator app and scan the QR code with Authenticator.cc instead of your phone.
3. Codes will be available in your browser for sign-in.

Best Practices

• Keep your backup device updated in your MFA settings.
• Use the Authenticator app for the quickest login experience.
• Update MFA methods immediately if you get a new phone or number.
• Avoid relying on SMS as your only method — app-based codes are more secure.
• We do not recommend using your office phone for MFA purposes.

Support Resources

• Set up your Microsoft 365 sign-in for multi-factor authentication

• Use two-step verification with your Microsoft account

• Set up the Microsoft Authenticator app as your verification method

• Change your two-step verification method and settings with Microsoft MFA

• MFA FAQs