Quick Reference Guide: Enforced MFA
Multi-Factor Authentication (MFA) requires that a you enter a code that only you can see in addition to entering your password when accessing your email account or other areas of Office 365. This is one of the most effective methods to protect against targeted impersonation attacks and Business Email Compromises.
MFA: Multi-Factor Authentication
MFA: Enabled, Enforced, and Disabled
- Disabled: An account that has MFA listed as Disabled indicates that no Multi-Factor Authentication method has been setup on the account.
- Enabled: An account that has MFA listed as Enabled indicates that the owner of the account can enable MFA if desired. When a user with this account logs in they will be prompted to enable a Multi-Factor Authentication method. The user can bypass this setup by clicking cancel or closing the MFA pop-up which will allow the user to continue to access their account.
- Enforced: An account that has MFA listed as Enforced indicates that the account owner must enable a Multi-Factor Authentication method. The user cannot bypass this setup and must choose from the available MFA options provided.
Microsoft Authenticator App
The first step to setting up MFA for your account is to get the Microsoft Authenticator app installed onto your mobile device. The Microsoft Authenticator app provides a code at the time of sign-in which is used to verify your sign-in request.
Note: You can setup MFA to be from an SMS text message if your organization permits it, however, this method is less secure.
To setup the Microsoft Authenticator app on your mobile device search for the application using the Google Play Store/Apple App Store on your device.
Once the app is installed, follow the Microsoft Authenticator App guide from Microsoft.
Note: To setup SMS text messages instead, follow the SMS text guide from Microsoft.
iPhone/iOS: Password Incorrect
CAUTION: If using Outlook 2010 or older please do not follow these instructions and first contact our office as historic emails may be lost and irretrievable.
Note: Field names may vary depending on device and iOS version.
Step 1: Remove the Email Account from the iOS Device
To remove your email account on your iOS device:
- Login to your iOS device.
- Locate and tap the Settings icon.
The Settings page opens.
- Tap Passwords & Accounts.
The Passwords & Accounts page opens.
- Under the Accounts section, tap on the account that isn’t operating correctly.
The selected account page opens.
- Tap the Delete Account button at the bottom of the account page.
Step 2: Re-add the Email Account Back to Your iOS Device
To re-add your email account on your iOS device:
- From the Passwords & Accounts screen, tap Add Account.
- Tap Microsoft Exchange.
Do not tap Outlook.com, this is not the correct setting for your account.
- Enter your email address and password.
- When prompted to Setup Manually/Sign In”, tap Sign In.
Note: This same process applies to other iOS devices such as iPads.
Password Still Incorrect After Reset
If you are unable to access your email account after MFA has been enforced due to a password error first try to remove/reconnect your email accounts if you are using an iOS device. If you have completed this step or you are not using an iOS device have your IT Administrator contact us to reset your password. If you have completed these steps and your password is still displaying as incorrect you may need to create an app password.
To create an app password, follow this guide from Microsoft.
Outlook Version Compatibility
Multi-Factor Authentication is not compatible with all versions of Microsoft Outlook.
See the official details from Microsoft here.
- Modern Authentication not supported
- You must upgrade your Microsoft Office software
Note: Microsoft 2010 Office products will no longer be supported by Microsoft on October 13th, 2020.
- This version is not supported by default
- You can upgrade to a newer version of Microsoft Office
- Your current version of Outlook 2013 can be updated and some updates within your computer’s registry keys can be performed by a technical engineer
Outlook 2016+ is fully supported.
What is One Care?
One IT Services offers a simplified end to end support plan known as the One Care Plan to proactively manage your IT infrastructure.
Stop waiting for unexpected failures, that’s not what we’re about. One Care = Keep Working.
Need Help? Want to Learn More?
Our dedicated support and account specialists are here to help. Call us on 08 8986 7333.