Multi-Factor Authentication (MFA)

Setting up your 海角社区 password and registering your device for Multi-Factor Authentication (MFA) are essential steps to ensure the security of your university accounts and personal information. These measures help protect your access to 海角社区 systems by requiring both a strong password and a second verification method, such as a mobile device, when signing in. 

Introduction to 海角社区 Password and MFA Setup

This guide will walk you through the initial setup of your 海角社区 password and the registration of your device for MFA using the Microsoft Authenticator App. Following these steps will help you safeguard your account and comply with 海角社区鈥檚 security requirements. 

By completing the setup, you will be able to securely access 海角社区 services and resources, knowing your account is protected by both a password and an additional authentication factor.

(with screenshots)

Initial Password Setup and Requirements

To begin using your 海角社区 account, you must first set up your password. Follow these steps to complete your initial password setup:

  • Go to the portal at portal.office.com and sign in using your 海角社区 email address.
  • Use your assigned 8-digit PIN as the initial password for your first login.
  • Upon signing in, you will be prompted to update your password to a new one.
  • Your new password must meet the following requirements:
    • At least 8 characters in length
    • Includes both uppercase and lowercase letters
    • Contains at least one symbol
    • Does not use personal information such as your name or date of birth
  • After updating your password, close the window, open a new tab, and return to portal.office.com.
  • Sign in again using your full 海角社区 email address and your new password to confirm the update.

Setting a strong password is a critical step in protecting your 海角社区 account and ensuring secure access to university resources.

Accessing the MFA Registration Webpage

To register your device for Multi-Factor Authentication (MFA) with your 海角社区 account, you will need to access the official MFA registration webpage. It is recommended to complete this process using a laptop or desktop computer for ease of navigation. 

  • Open a web browser on your laptop or desktop computer.
  • Navigate to the MFA registration page by entering:
  • At the Microsoft login page, enter your full 海角社区 email address and your password.
    • Follow the on-screen prompts to begin the MFA registration process.
  • If prompted with a 鈥淢ore information required鈥 message, click 鈥淣ext鈥 to proceed.

Accessing the correct registration page is the first step in securing your 海角社区 account with multi-factor authentication.

Make sure you have your mobile device available, as you will need it for the next steps in the setup process.

Registering Your Device with Microsoft Authenticator App

To enhance the security of your 海角社区 account, you are required to register your mobile device using the Microsoft Authenticator App. This process ensures that only you can access your account, even if your password is compromised.  

  1. ITSS recommends using a laptop or desktop computer and your mobile device to complete the registration steps.
  2. After signing in to the MFA registration page, you will be prompted to set up the Microsoft Authenticator App.
  3. Download and install the Microsoft Authenticator App from your device鈥檚 app store.
  4. On your computer, click 鈥淒ownload now鈥 for instructions or select 鈥淚 want to set up a different method鈥 if you prefer another authentication method.
  5. Once the app is installed, click 鈥淣ext鈥 on your computer to proceed to the QR code step.
  6. Open the Microsoft Authenticator App on your mobile device and if prompted, allow notifications from the App.  
  7. Tap the 鈥+鈥 icon to add a new account.
  8. Select 鈥淲ork or School account鈥 when prompted.
  9. In the Microsoft Authenticator App, choose 鈥淪can the QR code鈥 - DO NOT USE YOUR PHONE CAMERA APP FOR THIS STEP
  10. Return to your computer and click 鈥淣ext鈥 to display the QR code.

Scanning the QR Code and Completing App Setup

  1. Use the Microsoft Authenticator App to scan the QR code shown on your computer screen.
    1. Ensure you use the Microsoft Authenticator App to Scan the QR Code
  2. After you scan the QR code from your mobile device, click 鈥淣ext鈥.
  3. The system will send a test notification to your mobile device. Enter the number shown on your computer into the app and tap 鈥淵es鈥 to approve.
  4. If you do not receive the notification, check your phone鈥檚 notification settings to ensure notifications for the Microsoft Authenticator App are enabled.
  5. If you do not receive this notification and approve it, your MFA registration process will NOT be complete!
  6. Once the notification is approved, your computer will confirm that the registration is complete. Click 鈥淣ext鈥 and then 鈥淒one鈥 to finish the process.

Your mobile device is now registered for Multi-Factor Authentication on your 海角社区 account. You should see Microsoft Authenticator listed as your default sign-in method. If not, select it as the default method. For added security, consider adding a backup authentication method in case your primary device becomes unavailable.

Adding a Backup Authentication Method and Support Contacts

To ensure continued access to your 海角社区 account in case your primary authentication method becomes unavailable, it is strongly recommended to add a backup authentication method. This provides an alternative way to verify your identity if you lose access to your mobile device or need to register a new one. 

  • After completing your primary MFA registration, click 鈥淎dd method鈥 on the MFA setup page.
  • Select your preferred backup method (such as phone number or alternate email) and follow the prompts to register it.
  • You can add or modify your authentication methods at any time by logging into aka.ms/mfasetup.

It is especially important to have a backup method if you plan to replace your mobile phone or if you forget to register your new device before disposing of the old one.

If you encounter any issues or are unable to log into your account, please contact the ITSS Help Desk for assistance:

Email: helpdesk@upei.ca
Phone: 902-566-0465

The ITSS Help Desk is available to support you with any questions or problems related to your password or multi-factor authentication setup.

Multi-Factor Authentication FAQ

Who needs to set up MFA?
Which services do I need MFA for?
What MFA methods are currently available?
What if I damage or lose my phone?
What if I buy a new phone?
Do I always need to have my MFA method with me?
Do I need data or Wi-Fi to use the MFA app on my phone?
What if I鈥檓 having trouble getting the Microsoft Authenticator notification?
How do I change my 鈥渄efault鈥 MFA method?
How often do I see the MFA prompt?
Why does my Microsoft authenticator app now require a verification code when I log in?
I am using the Microsoft authentication app for MFA. When I try to log into my 海角社区 email or another 海角社区 service, the MFA authentication step doesn鈥檛 display a code even though it requires one. Where can I find it?
My MFA tap approval on my Apple Watch no longer works. Did something change?
Contact the 海角社区 Help Desk

Who needs to set up MFA?

The following groups are required to use MFA:

  • Faculty (including sessional instructors and adjunct professors)
  • Staff (including casual and term employees)
  • Students
  • Sponsored accounts (including visiting scholars, contractors, etc. who have been issued an @upei.ca email account)
  • Alumni who have recently graduated but have not yet transitioned to an alumni email account

Which services do I need MFA for?

  • my海角社区
  • All M365 and Google services (including Outlook and Google Drive)
  • 海角社区 Zoom accounts
  • myapps.upei.ca and mylabs.upei.ca virtual computing environments
  • Other applications that support Microsoft's single sign-on service

What MFA methods are currently available?

  • Microsoft Authenticator mobile app (recommended!) - available for free download for your and and can be installed and registered on your 海角社区 account for up to five devices.
  • Automated voice calls.
  • If neither of these options are available to you, please for further discussion.

What if I damage or lose my phone?

If your MFA method (e.g., phone) is lost, stolen, or damaged, please as soon as possible so that they can deactivate it.

If you previously registered an alternate, or backup, MFA method (e.g., tablet, iPad), you can continue to sign in using that method. You can also use your backup method to gain access to your account and register a new MFA method when you obtain a new phone.

What if I buy a new phone?

If you still have access to at least one existing registered MFA method and can log into your 海角社区 account, just go to the  and click the "+ Add Method" button.

If you do not have access to your 海角社区 account or any previously registered MFA methods, you will need to .

Do I always need to have my MFA method with me?

Yes! While ITSS has tried to find a balance between security and convenience (meaning you do not necessarily get prompted to sign in to your account every time you access an application or service), you must always be prepared to satisfy an MFA challenge.

Do I need data or Wi-Fi to use the MFA app on my phone?

No. The Microsoft Authenticator app has a time-based passcode option built in. This lives on your phone and does not require an internet connection. To use this alternative MFA method instead of your default method, follow the steps below:

  • On the Microsoft sign-in window, when prompted to open your MS Authenticator app and approve the request, just click the 鈥淚 can鈥檛 use my Microsoft Authenticator app right now鈥 link.
  • Next, click 鈥淯se verification code from my mobile app鈥
  • On your mobile device, open the MS Authenticator app and tap the account you are trying to log into.
  • A 6-digit code will be displayed 鈥 enter this code into the Microsoft sign-in window.

Helpful tip 鈥 this code automatically changes every 30 seconds, and there is a little timer next to the code to let you know how long until the code expires. Wait until a new code appears so that you have the full 30 seconds to enter the code into the sign-in window and for the code to be verified by the system.

  • If you have registered an alternative MFA method in addition to the Microsoft Authenticator App (such as voice call), you can also choose to use that method during the sign-in process instead.

What if I鈥檓 having trouble getting the Microsoft Authenticator notification?

  • Restart your mobile device - Sometimes your device just needs a refresh. When you restart your device, all background processes and services are ended. The restart also shuts down the core components of your device. Any service or component is refreshed when you restart your device.
  • Verify that your notifications are turned on - Make sure your mobile device has notifications turned on, both "globally" and for MS Authenticator in particular.
  • Turn off "Do Not Disturb" - Make sure you haven't turned on the "Do Not Disturb" feature for your mobile device. When this feature is turned on, notifications aren't allowed to alert you on your mobile device.
  • Make sure you have an internet connection - Push notifications require a working Wi-Fi or cellular data (3G or LTE) connection. Try opening some web pages to verify your device is connected to the internet. If not, use the authentication code MFA method instead.
  • Check your battery-related settings - If you set your battery optimization to stop less frequently used apps from remaining active in the background, your notification system has probably been affected. Try turning off battery optimization for both your MS Authenticator app. Then try to sign in to your account again.
  • Temporarily disable third-party security apps - Some security apps my inadvertently block notification. Disable the security apps protections temporarily and try signing in again - just remember to re-enable once you've completed your test!

How do I change my 鈥渄efault鈥 MFA method?

To change your default MFA method:

  • Log into .

Note: You will need to pass an MFA verification to reach this page. Here you will see your "Default Sign-in Method" listed.

  • Click the "Change" link to the right of your current default method.
  • From the drop-down menu, select which method you would wish to set as your new default.
  • Click 'Confirm'.

Note: You must first register additional MFA methods before you can choose them as your default. To add a new MFA method, click the "+ Add Method" button and follow the prompts.

How often do I see the MFA prompt?

Every time you sign in to a 海角社区 application or service which uses our Microsoft Single Sign-On Service. In other words, whenever you enter your 海角社区 email address and password in the 海角社区/Microsoft sign-in windows, and when you sign in to the my海角社区 portal.

Because 海角社区 utilizes a 鈥淪ingle Sign-On Service鈥, the number of times you are prompted to sign in from within the same web browser or on the same device is greatly reduced. This means that the number of times you are prompted with an MFA challenge is also greatly reduced. However, you should always have your MFA method on-hand and at the ready so that you are not caught off guard.

Why does my Microsoft authenticator app now require a verification code when I log in?

Effective, January 24, 2023, anyone using the Microsoft authenticator app for MFA will be required to enter a verification code as part of the authentication process. This approach is called 鈥淣umber Matching鈥 and was changed by Microsoft to provide additional security.

The action of entering a code will help reduce the risk of a cyber threat actor gaining access to your account using a technique called 鈥淢FA fatigue.鈥 MFA fatigue, also known as 鈥減ush bombing,鈥 occurs when a cyber threat actor bombards a person with nonstop notifications until the person either approves the request by accident or out of annoyance.

When you are faced with an authentication challenge, the message will contain a number that will then need to be entered into the approval notification on your mobile device. Depending on the 海角社区 service you are logging into, you may also notice contextual information including the application being accessed and a map location from which the sign-in attempt originated. This information is provided to help you further determine whether it is indeed your activity that is prompting the challenge or not.

This change only affects individuals who are using the Microsoft app and does not apply to other methods such as non-Microsoft authenticator app, phone number, or hardware token.

I am using the Microsoft authentication app for MFA. When I try to log into my 海角社区 email or another 海角社区 service, the MFA authentication step doesn鈥檛 display a code even though it requires one. Where can I find it?

If no code appears in the verification message, you may not have the latest version of the Microsoft authenticator app installed. Visit or the to ensure you have the latest version installed.

My MFA tap approval on my Apple Watch no longer works. Did something change?

Yes, effective January 24, 2023, verification codes are required for anyone using the Microsoft authenticator app replacing the previous tap approval. As a result, tap approvals are currently unavailable for Apple Watches.

Contact the 海角社区 Help Desk

Need Assistance? .

IT Systems and Services

Relevant Links