IT Security - Multi-Factor Authentication (MFA)

What is Multi-Factor Authentication?

Multi-factor authentication (MFA) is an extra layer of security for your Selkirk College network identity designed to ensure that you're the only person who can access your account, even if someone else knows your password.

The principle behind MFA is that as a user, you will have at least one pre-authorized device, such as your phone or a specialized security token, and a device – like your computer.  Anytime you want to access a resource on a device not registered to your unique identity, you will need to supply a one-time only, time sensitive passcode, and feed it to one of the devices registered to your unique identity.

When will I need to use MFA?

IT Services has enabled MFA for select Selkirk College services including Zoom, Microsoft OneDrive, O365 email (via Outlook). Logging into these services with your @selkirk.ca email address will require MFA, however, you may not be required to authenticate each time you log in.  If you work from multiple locations, you will be prompted to authenticate more often than someone who works from the same office and device each day.

How does it work?

Logging into MFA protected sites and applications is as simple as accepting a notification on your phone, plugging in an authenticator, or entering a PIN from a text message or phone call. Enroll once to protect all of your supported services.

Helpful tip: Reduce the number of authentication prompts you receive from an applications each month by selecting Remember me for 30 days.

Setting up your Devices for MFA

There are several options for setting up your preferred methods for two-factor authorization. Your authentication methods can be updated, managed and changed directly via your Microsoft account.  

Getting Started

Complete this quick self-assessment to get you started:

1. I am ready to go, give me the link to configure my Microsoft Authenticator profile.

2. I am ready to go, but I need a bit more help, I will contact IT to have someone walk me through the set-up process. Submit an IT ticket or join the Virtual Drop-in Zoom sessions.

Ready to Go?

Let's set-up your Microsoft Authenticator profile - find quick MFA setup instructions here; or follow the detailed screenshots provided for different authentication options below.  

Click on the hyperlink above or visit https://mysignins.microsoft.com/security-info and login using your Selkirk College email and password.

Choose your Authentication Option

Call my Office Phone

Screenshot	Instructions

Screenshot	Instructions
Open	If you don't have a College assigned cellphone you can use your direct line or extension.  Simply choose your preference.
Open	Make sure that the drop down menu item under "what's your preferred option" matches the criteria listed below. Even if you Select Canada, the system defaults to United States, don't worry, the call will still come through.
Open	Here is what it looks like when it's working
Open	Even if you use a softphone, like Mitel, add the college number, and your extension and the call will come through your computer.  Find the keypad and follow the prompts (usually they request you press the pound key (#).

Using a Cellphone - call or text

Screenshots	Instructions

Screenshots	Instructions
Open	If you have an assigned College phone, or a personal cellphone you would like to use, select authenticate phone to receive a phone call or text message.  Remember you don't need a cellphone, you can use your local or direct line, or a Yubikey. Select either method - Send me a code by text message, or call me
Open	Answer the phone and follow the prompts - usually it asks you to press the pound key (#).
Open	Or enter the code you receive on your phone.
Open	The code appears quickly on your screen. If you fail to note the code, don't worry, it will save to your text messages. If you have multiple codes, use the most recent one listed.

Download the Microsoft Authenticator App

Screenshots	Instructions

Screenshots	Instructions
Open	Using the App store on your phone or computer, download the Microsoft Authenticator App
Open	Or follow the instructions on the Microsoft Authentication site to configure the mobile app and scan the image provided and it will shortcut you to the authenticator app to begin downloading.
Open	Launch the Microsoft Authenticator app for iOS or Android phones and log in with your Selkirk College network identity using your @selkirk.ca email address.
Open	Copy the one-time password code into your MFA code prompt to access your service or register your mobile device for future Pass-wordless access (for repeated MFA use). Please note the password code is time sensitive and will expire.

I have set up MFA on my account - Now what?

You will begin to receive prompts starting on November 1, 2021.

How will I be prompted to authenticate?

If a Selkirk College affiliated service requires MFA, you may be prompted to first enter your password and then authenticate using the method you have set-up on your Microsoft Authentication Profile.  You can visit the same site to update your preferred method anytime.  

Steps to authenticate my account

Enter your Selkirk College network password

Open

Authenticate when prompted with your unique password code generated by the MS Authenticator App, or received via text or phone call.

Open

If you do not have access to the Microsoft Authenticator App then select Sign in another way. Proceed by selecting your alternative sign in method.

Open