What is MFA?
Multi-factor Authentication is a two step Microsoft verification process applied at the login stage which proves the person logging in is who they claim to be.

MFA is more secure than just a password because it relies on two forms of authentication: something you know (password), and something you have with you (mobile phone or tablet). 

You can only access Microsoft 365 services after clearing the second authentication level so if you fall victim to a hacker, they won’t be able to access your account without your phone.


Why do I need MFA?
Multi-factor authentication helps you to access your accounts more securely, especially while viewing sensitive work information.  Because passwords can be forgotten, stolen or compromised, MFA is an additional security step that helps protect your account by making it harder for other people to break in.

Cyber-attacks have increased by over 350% since the beginning of this year, they are more sophisticated making them harder to spot so we are now seeing password stealing schemes targeting our customers’ Management and Finance teams on an almost daily basis.  So now is more important than ever to safeguard your account against these kinds of attacks.

I’m trying to set up MFA, but I don’t know my Microsoft 365 password…
If you have security questions set up, you can reset your password in the Lucidity Cloud Control Panel using the “Forgot password” option.
If you don’t have your security questions set up, contact our Support Team.

What happens if I lose/break my mobile phone?
If you lose your mobile phone you will need to contact our Support Team. They will help you gain access to your account and set up MFA again when you have a replacement device.

Will this incur mobile data charges?
As long as your mobile phone has active internet connection MFA won’t occur any mobile data charges.

When I'm not working, will I still be sent frequent MFA approval prompts?

No, you will only be sent MFA approval prompts when you are actively trying to sign in to your Microsoft 365 account, or if somebody else is.


What if I don’t have a work provided phone?
No worries! You don’t need a work mobile to use MFA. Our team at Lucidity use our personal mobiles to approve MFA and never had any issues. It’s as simple as downloading a free app from your mobile app store.

I’ve downloaded the Authenticator app on my personal mobile, does my company now have control over my phone?
Registering a device gives your mobile phone access to your company's services. It doesn't allow your company to access to your phone or manage it in anyway.

What if I don’t want MFA?

MFA is now mandatory to keep your company Microsoft 365 account secure, please discuss with your manager if you continue to have concerns.


So, will I need to approve MFA prompts EVERY day?
Not necessarily. Microsoft ‘learns” what a normal sign-in is for you, so if you are signing in from the same device, in the same location everyday it may stop prompting you.  But if you log in from a new location, you’ll need to approve MFA.

How do I know if I'm being hacked?

If you are getting MFA prompts and are not actively trying to sign in to your Microsoft 365 account, it is likely that someone else is trying to access your account.

In this case, select DENY on your mobile phone when you receive an MFA prompt. If you are getting frequent MFA prompts that are intiated by you, please log a ticket with our Support Team so we can investigate furter. 


What does the code in the mobile app keep counting down?
You might see a 30-second timer counting down next to your active verification code. This timer is so that you never sign in using the same code twice. Unlike a password, we don't want you to remember this number. The idea is that only someone with access to your phone knows your code.