skip to primary navigationskip to content

Multi-factor authentication for University Microsoft accounts

Multi-factor authentication adds an extra layer of security to your University Microsoft account. If someone gets hold of your password, they won't be able to get into your Microsoft applications – including your Exchange Online email account – without your phone or tablet.


We're currently deploying this service in specific departments

The following instructions are only relevant to staff in participating departments. If you are interested in deploying multi-factor authentication in your institution, please contact the .


Introducing multi-factor authentication

Multi-factor authentication (MFA) adds an extra layer of security to the process of logging in to a system or device by prompting you to provide an additional form of identification. This might be entering a code sent to your mobile phone or passing a biometric scan, such as face ID or a fingerprint. It's sometimes called two-factor authentication (2FA) or two-step verification (2SV).

We're adding MFA to University Microsoft accounts in some institutions to increase security around access to Exchange Online email accounts, OneDrive, other Microsoft applications and the AppsAnywhere remote access virtual desktop service that uses Citrix Workspace.

How it works

If your institution is participating in this rollout, you'll receive details of the date on which MFA will be added to your University Microsoft account. When you next attempt to log in to a Microsoft Office 365 application – such as Outlook, OneDrive and Teams – on or after this date, you'll be prompted to set up your choice of a second factor for authentication. We recommend using the Microsoft Authenticator app on a mobile device, but there are several options and you can set up more than one.

When will I be asked for a code?

Once you've set up a second factor, you'll be asked to authenticate with it on all applications and devices when you use them for the first time. You'll be asked for a code when you use a different device for the first time even if you're using an app you've used before. Logging in via the University's VPN may also trigger a request for an authentication code because it will be seen as a different location.

Note that the process of logging in to non-Microsoft applications, such as CHRIS, CUFS and University websites, won't be affected by this change.

You can update your settings and change your second factor at any time in Microsoft profile (see below).

Getting set up

At some point after MFA is enabled on your University Microsoft account, you'll be prompted to provide further information when you next attempt to log in to an Office 365 app, such as Outlook.

This is when you'll be able to set up your multi-factor authentication.

Managing your authentication settings

You can change, remove and update multi-factor authentication methods at any time by logging in to your University Microsoft account.

Find out how to manage your multi-factor authentication settings.

Getting help

If you experience any difficulties logging in or lose your second factor, please contact the .

UIS Service Status

Phone padded  Service status line: (01223 7)67999
Website  Sign up for SMS/email status alerts
Website  Read major IT incident reports

UIS bITe-size bulletin

A regular newsletter aimed at the University's IT community, highlighting service and project news from UIS.

Sign up >

RSS Feed Latest news

Multi-factor authentication rollout on University Microsoft accounts

Apr 27, 2021

UIS is launching a project to roll out multi-factor authentication (MFA) on University Microsoft accounts.

University web search update on 30 April

Apr 22, 2021

We're updating the University web search engine to the latest version on Friday 30 April. Afterwards, it will look slightly different and some of the functionality will change.

View all news