A stolen password is rarely enough for a hacker whentwo-factor authentication is enabled: they need your phone's passcode. It's the most cost-effective security measure for a business. Here's how to enable it on Microsoft 365.
Quick answer: To enable two-factor authentication on Microsoft 365, your administrator must first enable it for the organization. Each user then configures their method by going to aka.ms/mfasetupand adding the Microsoft Authenticator as a verification method.
What is two-factor authentication?
Two-factor authentication ( also called two-step verification or MFA) adds a second layer of identity verification to the login process. After entering your password, you confirm it with a code or a notification on your phone. Even if your password is compromised, your account remains protected.
1. The administrator activates the protection
The first step takes place on the administrator side, in the Microsoft 365 admin center. This involves enabling security for the organization (either through default security settings or conditional access rules). Without this activation, users cannot configure their method.
2. The user configures their method
Once activated, each employee configures their own verification:
- Go to aka.ms/mfasetup (or "Security Info" in your account).
- Click on Add a connection method.
- Choose Authentication Application and follow the instructions.
- Scan the QR code with the Microsoft Authenticator app on your phone.
3. Prefer the Authenticator app
Microsoft recommends the Microsoft Authenticator over SMS codes, which are more vulnerable. It sends a notification that you approve with a tap, or displays a one-time code.
Why this is essential for an SME
Most account breaches exploit stolen or reused passwords.Two-factor authentication alone neutralizes this attack. This is true for your personal accounts (email, banking, social media) as well as for a business.
Frequently Asked Questions
What happens if I change phones?
Before switching devices, add the new method to your security information, or ask your administrator to reset your verification. Always keep a backup method.
Does MFA slow down connections?
Very few. With the Authenticator app, you simply approve a notification. You can also mark a device as trusted to limit the frequency of requests.
Secure your company's accounts
We deploy two-factor authentication and cybersecurity for everyone, individuals and businesses alike in Quebec, without unnecessary friction. Contact OKTO Solutions or discover our services.