Do you use Microsoft Authenticator to sign in to AU’s systems? Look out for new security feature.
Microsoft has made changes to its Authenticator app in order to improve security. This means that, from 4 May 2023, you will have to enter a number in the Authenticator app when you sign in to systems using two-factor authentication.
Aarhus University has already introduced two-factor authentication in several of its systems. From 4 May 2023, if you use the Microsoft Authenticator app, you will have to complete a number matching stage when you sign in to systems such as Outlook, Teams, Brightspace and more.
Until now, you have only needed to press ‘yes’ or ‘no’ on the verification message that appears in the Authenticator app when you sign in.
From now on, you will instead have to enter a number in order to confirm that you are the person you are claiming to be. You will be guided through this in the app.
How two-factor authentication will work from now on
- When you sign in to a system that requires two-factor authentication, a number will automatically appear on your device’s screen.
- Open the Authenticator app and enter this number. The app will then ask whether you are trying to sign in.
- If you are trying to sign in, select ‘yes’. You are now signed in.
- If you are not trying to sign in, select ‘No, it is not me’.
This change will have no implications for you if you use text messages or phone calls for two-factor authentication.
You can follow this guide, which demonstrates how number matching works in the Authenticator app.
Facts about two-factor authentication
- Two-factor authentication provides an extra layer of security. In order to sign in to some systems – for example, Teams – you need to enter your password and then verify that it is you who is trying to sign in.
- This is an effective safeguard against identity theft, because hackers cannot access the system just by cracking your password.
- Number matching improves the security of two-factor authentication, since it requires that you type in a number rather than just clicking ‘approve’ in the Authenticator app.
- The threat from cyber criminals is high, which is why this further improvement to security is required.