Increasing your account security with Microsoft 365 Security Defaults (for users)

Microsoft authenticator app

This is how to set up two factor authentication with your Microsoft 365 account, if your tenant has Security Defaults enabled.

To start, please visit www.office.com and login, if you have not already set up the Microsoft Authenticator app then you will be prompted to do so. This needs to be done within the next 14 days. Once this process is completed, you will occasionally be required to use the Authenticator app to confirm your identity when logging in to your account.

The next time you sign in, you will be requested for more information, click Next and you will then be prompted to set up the Microsoft Authenticator app:

Download Microsoft Authenticator from the Apple App Store or Google Play Store, open it and tap add a Work account, and scan the QR code. Click Next and then scan the QR code:

Click Next, then you will receive a notification through the app to confirm that it has been configured correctly:

Next, you will be prompted to add a phone number as an alternative authentication method, this is very useful in situations where you don’t have your phone, have no internet connectivity, or have replaced your phone. We suggest adding a mobile number and leave the Text me option selected.

The Authentication Phone can be either an SMS or a call, so you could use a mobile or landline number. Enter your number, click Next and enter the code from the SMS. Now you should be all done:

At this screen just click Looks Good, you could optionally add a personal email address as a third method if you like.

Once done, we also recommend that you go into the Authenticator app, select Settings, select Backup, and then turn on iCloud backup. If you lose or replace your phone, you can use this to recover the app configuration.

Note that you can always change this information later by visiting https://aka.ms/mfasetup

From now on, you may need to use the app, or alternative phone or email to confirm unusual signins (e.g. from a new location) or if you are accessing sensitive information such as changing your password.

Note for iPhone and iPad users:

  • If you use the Mail app on iOS, you may need to remove and add the account again.
  • If this does not work, install the Outlook app and contact support who should be able to get the mail app working again.

If you have changed your phone and are unable to access your account, please see our other article here: Gaining access to your Office 365 account if you have replaced your phone and have MFA enabled – Cloudrun

Posted in Knowledge Article, Office 365, Security

Related Posts

2 Comments

  1. Pingback:Increase your Office 365 security for free with Security Defaults (for admins) - Cloudrun

  2. Pingback:Gaining access to your Office 365 account if you have replaced your phone and have MFA enabled - Cloudrun

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: