Menu

How to Add or Update Your Microsoft Multi-Factor Authentication (MFA) Methods

IT Service article relates to:
This article is intended for:
Applicant, Faculty, Staff, Student

Instructions

Security Recommendation

The Microsoft Authenticator app provides the strongest protection for your account, and it should remain your primary sign-in method. With the app’s default settings, you must unlock your phone and confirm the request, which creates a built-in layer of security that other methods cannot match.

While adding a backup option is helpful, adding too many backup methods can increase your risk, since each additional method creates another potential path for someone to attempt unauthorized access. For the best balance of security and accessibility, we recommend:

  • Use the Microsoft Authenticator App as your primary method
  • Add only one secondary recovery option

This keeps your account protected while still giving you a safe fallback if you need it.

When to Use These Settings

Use the Security Info page when you:
• Upgrade or replace your phone and need to reconnect the Microsoft Authenticator app
• Want to add a backup method (such as a phone number) in case you don’t have access to the app
• Need to update a number or remove outdated methods
• Need to sign out of all active sessions for security reasons

Rita Book Signed into MS Security Page

Accessing Your Security Info Page

  1. Go to https://aka.ms/mysecurityinfo.

  2. Sign in with your FIT email address and password.

  3. You’ll see a list of all authentication methods currently registered on your account.

Adding a New Sign-In Method

Tip: Adding at least two methods (such as phone and Authenticator app) gives you more flexibility if one option isn’t available.

  1. Select + Add sign-in method.
  2. Choose the method you’d like to add (Authenticator app, phone call, alternate phone, or ).
  3. Follow the on-screen steps to complete setup for the new method.
  4. Once added, it will appear in your list of available options.

Deleting a Method

If you no longer use a method, you can remove it.

  1. Find the method you want to delete.

  2. Select Delete.

  3. Confirm the deletion.

Note: You must have at least one valid method on your account at all times.

Signing Out Everywhere

If you believe your account may have been accessed on a device you no longer use, you can sign out of all active sessions.

  1. On the Security Info page, select Sign out everywhere.

  2. Confirm the action.

  3. You’ll be required to sign in again on all devices.

Need more help?

Contact TechHelp