How to Set up your Microsoft 365 sign-in for multi-factor authentication (For end users)

Once we enable your organization, and your account, with multi-factor authentication (MFA) you have to set up your user account to use it.

By setting up MFA, you add an extra layer of security to your Microsoft 365 account sign-in. For example, you first specify your password and, when prompted, you also type a dynamically generated verification code provided by an authenticator app or sent to your phone.

 

  1. Sign in to Microsoft 365 with your work or school account with your password like you normally do. After you choose Sign in, you'll be prompted for more information.

    A dialog box telling you that more information is required to complete your sign-in
  2. Choose Next.
     
  3. The default authentication method is to use the free Microsoft Authenticator app. If you would rather use SMS messages sent to your phone instead, select I want to set up a different method. Microsoft 365 will ask for your mobile number, then send you an SMS message containing a 6-digit code to verify your device.
      
  4. Once you complete the instructions to specify your additional verification method, the next time you sign in to Microsoft 365, you'll be prompted to provide the additional verification information or action, such as typing the verification code provided by your authenticator app or sent to you by text message.
      

Note: Generally you'll only need the additional verification method the first time you sign into a new app or device, or after you've changed your password. You can select the device as trusted, if prompted, and it will only ask again if the account password needs to be changed or if you are using a different device for the first time.