This page will be regularly updated with various FAQ's regarding MFA (Multi-Factor Authentication).
What are the direct benefits to me for having MFA enabled?
- No longer needing to regularly change passwords
- Able to access systems like email from outside the UK
- (Coming soon) Staff able to reset their own forgotten passwords
- Once setup, will not be prompted by it whilst at a trust site
Can I use my School/Trust owned iPad instead of a personal device to enroll in MFA?
Absolutely you can! As long as you keep the device with you, day to day this would be the best one to use to install the Microsoft Authenticator app onto. Sadly not everyone has an iPad, so the provided documentation needs to cater for this which is why generally there's little mention of this throughout.
Does this affect having Teams/Outlook on my phone/personal device?
Yes. You will need to approve the MFA prompt or type in a temporary code texted to you, so you can continue to use these apps on your phone, the same as you will on a computer or iPad.
Do I need to enroll in MFA?
The DfE, Microsoft, NCSC, and The Government are all now either strongly recommending MFA in all pubic sector entities. This is in response to heightened threats in the world at the moment, and there have been some large companies who work with the public sector who have already seen attacks which may have been prevented with the introduction of MFA.
I understand this is inconvenient for some however it does help to protect both Trust and Personal user data.
Do I need to use the App, or are there other options?
The app is the easiest to use method and I personally would recommend using this, however you can use one of 2 other methods.
Text message - you will receive a 6 digit code you will need to type in. These are single use codes.
Phone call - you will receive a phone call asking to approve a sign in.
If I use the app, will it take up a lot of space?
The android app takes up around 130MB currently which is around 0.2% of memory on the average mobile phone.
What personal data do you collect?
As a trust we do not collect any personal data when using this app. Microsoft require a phone number to send text messages to either as the primary method of MFA or a backup, however this is not advertised to IT Support. This mobile number can be accessed by IT Support at your request so we can update/change it.
Does being enrolled in MFA mean I need to have my mobile device with me at all times?
Ideally, yes.
However this is not always feasible. For this reason, there are some safe locations which include all School sites, and Trust locations however you may be asked to approve your sign in from a new device or location the first time it's used outside of a trust location.
How often will I need to approve sign ins using MFA?
Currently we require you to renew MFA approval every 90 days. For this reason, even once you've approved your sign in, please do not uninstall the app.
How do I use the Microsoft Authenticator mobile app?
Here's a link to Microsoft's documentation:
Comments
0 comments
Article is closed for comments.