Multifactor authentication - Frequently asked questions


What is multi-factor authentication?

Multi-Factor Authentication (MFA) is the process of authenticating a user logging in to a service using more than just a username and password. In practice, this means that after entering the username and password, the login is verified by a smartphone application (Authenticator) that you connect to the service, using a similar principle as for banking login.

Why is multi-factor authentication required?

The purpose of deploying MFA is to improve JYU's information security practices as various types of data breaches and phishing attacks become more common. By enabling multi-factor authentication, you protect your account from unauthorized use and ensure that your data does not fall into the wrong hands.

Note! If you do not use multi factor authentication very often, do not remove Authenticator app when phone asks to remove seldom used applications.

Which code opens locked Microsoft Authenticator app?

Your phone security code. The same pin code/password that you use to open your phone.

How often multi-factor authentication approval is requested?

Why is strong authentication asked for in a service that is not in M365? 

Certain services used at JYU are linked to Microsoft login, so these services are subject to the same requirements for strong authentication. All logins made with a Microsoft account (username@jyu.fi) are covered by MFA.

How do i sign in with strong authentication?

After setting up MFA, you will log in as before with your username and password, after which you will receive a notification on your MFA-connected phone that you accept. If you do not receive a confirmation request notification on your phone, open the Microsoft Authenticator application where the request should appear. 

What should i do when i change my phone?

NOTE! Do not remove the old phone before using the new one!

  1. Perform a two-step authentication for the new phone according to the deployment guide.
  2. Then delete your old phone, in the security information section of your profile portal (https://mysignins.microsoft.com/security-info)

In case of problems, please contact the digital services helpdesk.

My email stopped working after the MFA deployment, what should I do?

Some email applications may have problems after deploying MFA. Try deleting your email account from the application and re-add it. If re-adding the account doesn't solve the problem, install Outlook for Android or Outlook for iOS on your phone from your phone's app store. 

Can i access the Authenticator app from multiple mobile devices?

Yes, you can access the app from multiple devices, such as your work and personal mobile devices.

Learn more about multi-factor authentication on the Digital Services website.

I use a role-based mailbox (shared mailbox) for email. Do i need MFA for it?

Yes, the role mailbox opens with the same Microsoft ID username@jyu.fi as your JYU email, and all logins with a Microsoft ID are covered by MFA.

I forgot my smartphone at home, what should i do?

If you have enabled multi-factor authentication, authentication cannot be bypassed. If you have another mobile device available, such as your own mobile phone or tablet, you can reset the MFA device and enable multi-factor authentication on your other device. To do this, follow these steps:

If you encounter any problems, please contact the digital services helpdesk.

How can i test the functionality of MFA authentication?

You can test the functionality of MFA by signing out of all Office 365 sessions and going to https://mysignins.microsoft.com/security-info, where you will see all the MFA methods and devices associated with your account.

What are the supported applications for multi-factor authentication?

Supported applications include MS Authenticator, Cisco DUO Mobile, and FIDO2 security keys. Other applications are allowed, but digital services do not provide support or instructions for their use.