Using Multi-Factor Authentication (MFA) with Your Auburn Alumni or Retiree Email Account


Microsoft Multi-Factor Authentication (MFA) is now a requirement for Alumni Email Accounts and Retiree Email Accounts.  This requirement enhances security on Auburn email and will affect Auburn Alumni who graduated beginning in 2010 as well as employees that have retired from Auburn University.

 

What is Multi-Factor Authentication (MFA)?

Multi-Factor Authentication is a process where a user is prompted during the sign-in process for an additional form of identification, such as entering a code texted to their cellphone or providing a fingerprint scan.

 

If you only use a password to authenticate a user, it leaves an insecure opening for attack.  When you require a second form of authentication, security is increased as this additional factor isn't easy for an attacker to obtain or duplicate.

 

Multi-Factor Authentication works by requiring two or more of the following authentication methods:

 

This article describes using MFA with your Auburn University Alumni Email account.  Below you will find instructions on how to set up MFA initially and how to edit and delete your authentication methods.  To access your email, the Outlook App (OWA) is recommended.  The Outlook App can be downloaded from the App Store or the Google Play Store, depending on your device.   You can also log into your email account using an internet browser to navigate to owa.auburn.edu  

 

Please follow the below instructions or view this view this instructional video to set up your authentication method.

 

  1. Sign into your Auburn email account by visiting outlook.com/tigermail.auburn.edu.
  2. Once logged into your account, you will be brought to the below screen.  Click “Next” to start the set-up process.

 

set up process

 

  1. This screen allows you to use the Microsoft Authenticator app.  If you would like to receive a text message or a phone call to authenticate, please click on the link “I want to set up a different method” and go to the section titled "How to Set up Your Authentication Method Using Call or Text." 

 

use a different authenticator

 

  1. To continue setting up MFA using Microsoft Authenticator, you must download the app.  Click “Download now.”  After you have installed the app on your device, or if you have already downloaded the app on your device, click “Next.”

 

download the app now

 

  1. You may want to allow notifications on your device.  These notifications will be necessary for you to authenticate. ” Click “Next.

 

allow notifications

 

  1. To activate the account on your smartphone, you must scan the QR code. 

 

scan the qr code

 

 

  1. Open the Microsoft Authenticator app on your device.

 

  1. Tap “Add Account.”

 

add account

 

 

  1. Tap “Work or school account.”

 

select work or school account

 

  1. Tap “Scan QR code.”  This will connect the Microsoft Authenticator to your account.

 

scan QR code

 

  1. Use your smartphone’s camera to scan the QR code.

 

view of scanning the qr code

 

  1. If you set up your account on your smartphone, you will not have to scan a QR code.  You will, instead, click the link “Pair your account to the app by clicking this link.

 

using a smart phone and not scanning qr code

 

  1. Once you have scanned the code (or paired your account), your account will display on your smartphone within the Authenticator app.

 

account has been added

 

  1. Return to the setup screen.  After you have scanned the code, click “Next.”

 

qr code has been scanned

 

  1. Once Microsoft Authenticator is connected to your account, you will be sent a test notification.

 

sent a test notification

 

  1. Approve the notification on your smartphone.

 

approve test notification

 

  1. You will see a confirmation on your computer (as well as your smartphone) that the notification has been approved.  Click “Next.”

 

notification approved

 

  1. Once the test notification has been approved, your setup for Microsoft Authenticator will be complete.  Click “Done,” and you will be taken to your account.

 

success

 

 

  1. You have completed this process.  Please contact the OIT Service Desk if you need assistance. 

 

  

Follow the below instructions or view this instructional video to set up your authentication method.

 

  1. Sign into your Auburn email account by visiting outlook.com/tigermail.auburn.edu

 

  1. Once logged into your account, you will be brought to the below screen.  Click “Next” to start the set-up process.

 

more information required screen

 

  1. If you prefer to authenticate via text or a phone call, click “I want to set up a different method.”  This link is located at the bottom of the window.  Click the following section titled "How to Set Up Your Authentication Method Using the Microsoft Authenticator App" for assistance with this method.

 

click here for the authticator app

 

 

  1. A window will pop up, asking you to select a method.

 

choose a method of authentication

 

  1. Select “phone” from the drop-down and click “Confirm.”

 

select phone

 

  1. You will now be on the “Phone” screen.  Select the country your phone is set for and enter the telephone number to the right.  Select either “Text me a code” or “Call me.”  Click “Next.”

 

select text me or call me

 

  1. A verification code will be sent to your phone.  Enter this code in the field and click “Next.”

 

enter the activation code

 

  1. You will receive a message that your SMS has been verified.  Click “Next.”

 

your sms has been verified

 

  1. The last message will confirm that your account has been set up and verified.  You will see your default sign-in method and the phone number it is associated with.  Click “Done.”

 

success!

 

  1. You have completed this process.  Please contact the OIT Service Desk if you need more information or assistance with this process.  (email, link)

 

 

  1. Sign in your account at outlook.com/tigermail.auburn.edu.

 

  1. Once signed in, click on the icon with your initials (or photo) in the upper right corner.

Graphical user interface, text, application, chat or text messageDescription automatically generated

 

  1. Click “View Account.”

Graphical user interface, application, emailDescription automatically generated

 

  1. Under Security Info, Click “Update Info.”

 

 

  1. Once on the Security Info window, you have multiple options.  You can change your Default Sign-In Method or modify or delete the phone number you have associated with the account.  You can also “Sign Out of Everywhere” if you have lost the device.

Graphical user interface, text, applicationDescription automatically generated

 

 

  1. To delete the default sign-in method, click “Delete.”

Graphical user interface, text, applicationDescription automatically generated

 

 

  1. You will be prompted to confirm that you want to delete the phone.  If you click “OK,” your phone or authentication method will be immediately deleted.

A screenshot of a computerDescription automatically generated with medium confidence

 

  1. If you have chosen to delete the method, under "Add method," you will see "No items to display."

Graphical user interface, applicationDescription automatically generated with medium confidence

 

  1. Once you have deleted the default method, you can add a new method.

 

  1. Click “Add Method.

A picture containing graphical user interfaceDescription automatically generated

 

  1. Choose which method you would like to use.  “Phone” is the recommended method.

Graphical user interface, text, application, emailDescription automatically generated

 

  1. Select your method and click “Add.

Graphical user interface, text, applicationDescription automatically generated

 

  1. Select the Country Code and enter the phone number.  You will also need to choose between “text” or “call.”  Remember, if you choose “text,” your phone must have texting capability (SMS).

Graphical user interface, text, application, emailDescription automatically generated

 

  1. Click “Next.

 

 

  1. You will receive a text message with a code.  Enter the code and click “Next.

Graphical user interface, textDescription automatically generated

 

  1. You will see the message that your phone was successfully registered.  Click “Done.

Graphical user interface, text, application, emailDescription automatically generated

 

  1. You will now see your authentication method on the screen, with the option to change or delete it. 

 

  1. If you have completed making changes to your authentication device, you should sign out of your account. 

 

  1. Click the account icon in the upper right corner and click “Sign out.

Graphical user interface, text, applicationDescription automatically generated

Do I have an Auburn Alumni Email Account?

  • If you graduated from Auburn University after 2010, you are eligible to keep your email account.  However, email accounts that are unused for one year are closed due to inactivity.  

I am retired, but which authentication should I be using?

  • Retired pre-Duo: Retirees who retired before any MFA implementations on campus AND are no longer employed with AU will use Microsoft MFA for their email and all O365 applications.
  • Retired post-Duo: Retirees employed during the Duo implementation will use Duo for all other Duo-protected resources (ex., VPN) but will use Microsoft MFA for email.
  • Retired, but still TES: Retirees employed through TES will notice no change.  They will continue to use Duo for all Duo-protected resources.  Once TES employment concludes, they will use Duo for all Duo-protected resources and transition to Microsoft MFA for email and all O365 applications.

I am signed into my Auburn email account, but I don't remember the password or how to sign in.

What if I already signed up for MFA before Auburn required it?  When I sign in, it says I am already registered.

I signed up for MFA before this requirement, but I no longer have that authentication device.

I have an iPhone and already have my email on the device.  What do I do?

  • The Outlook app is recommended.  There is no charge for this app; it can be downloaded from the App Store.  You will need to delete the account and re-add it. 
  • For instructions on re-adding your email account using the default mail app on the iPhone, please click this link.  

I have an Android device and already have my email set up on the device.  What do I do?

  • The email client on some Android phones may not support MFA.
  • The Outlook app is recommended.  There is no charge for this app, and it can be downloaded from the Google Play Store.  
  • You will need to delete the account and re-add it.  For instructions on how to re-add your email account using the default mail app on an Android, please click this link

How do I use MFA and travel internationally?

  • If you have purchased (or have) an international phone plan on your cellular device, you will not need to make any changes.
  • If you do not have an international plan, you must download the MFA app. 
  • You can use this app on your phone with a wi-fi connection.  With your phone connected to Wi-Fi, you will be able to receive push notifications when authenticating to your email.

I have an up-to-date Chromebook and can't locate the Outlook app.

  • Chromebooks will no longer support the Outlook app starting November 1, 2021.  Chromebook users are encouraged to view Auburn email from the web.  

How often will I have to re-authenticate?

  • Your device will remain authenticated for up to 90 days if used regularly on the email app and up to 7 days on your web browser before being prompted to re-authenticate.  

Are you still experiencing issues with your Auburn email and MFA?