What is Multifactor Authentication and why should we use it?
Multifactor Authentication (MFA) is a security feature, which adds a layer of protection when accessing your UL account remotely. Recently, hackers have targeted higher education institutions by using fraudulently acquired credentials to acquire sensitive and personal information from users. Multifactor authentication is an effective control to help prevent these type of attacks.

How does Multifactor Authentication work?
Multifactor Authentication (MFA) works by requesting a second factor of authentication to verify your identity with something you know (UL username & password) in addition to something only you have (your mobile phone, on which you will receive a login confirmation notice via an app).

What this means for me?
You will be required to use MFA to access Microsoft Services (Email, OneDrive for Business and Teams) & Sulis off-campus.  ITD have plans to implement MFA on all IT services provided by ITD.

Once you are registered for MFA and you want to access Office 365 services (Email, OneDrive for Business and Teams) or Sulis off-campus, you will be requested to provide a second factor of authentication for that device and for every Microsoft application you launch, i.e., Outlook, Teams and OneDrive for Business. This means you will need to verify your authentication via your mobile phone (simply tap Approve when prompted).

If you want to access Microsoft Services via the Microsoft 365 Portal using a Web Browser, you should select the “Don’t ask me again for xx days” option on the screen when prompted. This setting should only be enabled on UL-managed devices, and ITD do not recommend using public computers such as in cafes or hotel foyers to access UL services or data including email. See FAQ’s for further details.

Your device will then be trusted for 60 days and you will not be requested for your second factor of authentication on that device again until that time period expires.

If your access Microsoft services / Sulis on multiple devices, this verification process will be repeated for each device.