Multi-Factor Authentication in O365
What is Multi-Factor Authentication (MFA)?
Sometimes known as Two Factor Authentication, MFA is a secure method of verifying that it is really you and acts as an extra security layer if your password is hacked.
Examples are: SMS code to your Phone, code to your email address or a code via an APP on your phone. It’s easy to setup and free with Office 365.
Why should I use it?
Our accounts and IT systems are constantly under attack. We already employ firewalls on all of our home and business connections. We install Anti-Virus, Anti-spyware and Anti-Malware software on our computers to protect us.
However, none of these security measures are of any help if our PASSWORDS get hacked or stolen. Many of us tend to use the same password on other services as well – a successful hacking attempt on one website can result in our lives (and our colleagues and family) being turned upsidedown.
Our email accounts contain so much sensitive information that could be devastating in the wrong hands. Think Identity theft, fraud, bank account information, spam sent to your friends, contacts and family, your reputation irrevocably tarnished and degraded, job loss, company collapse … and this is just the TIP of the iceberg. Todays online accounts now include MUCH more than email.
Many Banks are now insisting on MFA logins for Online transactions and account access. Government Online Services such as Centrelink, Medicare and more are also insisting on MFA logins for increased security.
We see dozens, sometimes hundreds of invalid login attempts on the Office365 accounts that we manage, and it is only a matter of time before one of those attempts is successful. Will it be your account?
Everyone needs to protect themselves and their online presence just as securely (or more so) as you would your home and family.
How does it work?
MFA simply adds an additional security question that must be answered correctly after you have entered your account information and password. The answer will be a unique code that is sent to you via email, SMS, or a rolling code in an Authentication app which changes every 30 seconds – just punch in the code and you have secure access to your account and data.
Trusted devices only require a code every 14 days
How will it affect me?
Apart from a few seconds to look up and enter the code, it has no other effect except for ensuring that you are the only person who can access your account. Trusted devices only need a code every 14 days.
Is it easy to use?
Yes, it is VERY easy to use and setup and Free.
How much does it cost?
Multi-Factor Authentication is already included as a part of your service. There is no extra payment required.
How do I set it up?
Just contact PrettyClever and ask us to enable Multi-Factor Authentication on your account.
You will need to choose one or more methods to authenticate. These are:
- An alternate email address (recommended if you forget or need to reset your password)
- A mobile number for SMS notifications
- The Microsoft Authenticate App (recommended). This can be used for:
- Rolling Codes
- Push notifications with a simple Allow/Deny access prompt (Recommended)
All methods are easy to setup and we can step you through the process in minutes. In all cases, you select the method, provide the service identification (email or number) and then confirm the service by entering the code sent to you.
For Microsoft Authenticate, simply download and install the App from the Play or App store, Add a new account and use the App to scan the QR code shown on your screen. Then verify the App using either the code or a push notification.
What happens if I DON’T use MFA?
Please refer to the question “Why should I use it?” above.
If you do nothing, you are leaving yourself open to attack.
You owe it to yourself, your company, colleagues and family to keep your data secure.
If you have any questions or wish to discuss your options, please feel free to contact us at any time.
We are always ready to help you to get the right outcome for your Business.
Send your enquiry to firstname.lastname@example.org or call us on 9629 7733 during business hours.
PrettyClever Consulting – Making I.T. Happen.