Multi Factor Authentication - MFA - 2FA
Grace IT is rolling out and enforcing this MFA policy to all Staff in order to improve the security of our organization and help reduce potential headaches. If you are enrolled in MFA, you are required to have your phone as an additional method of authenticating yourself (on top of your password) to log in to your Office365/GraceOhio account. The easiest way to do this is using the Microsoft Authenticator App on your phone. The benefits of being enrolled in MFA is that you do not have to worry about resetting your Office365/GraceOhio and work laptop password regularly, and you will not get any more password reset notifications/emails. MFA also makes it increasingly difficult for anyone else to access your account since they need your password and your approval from your phone in order to sign in, making this a critical technology in cybersecurity.
Standard 2FA Method
![icon_microsoft-authenticator[1].png](https://kb.gracechurches.org/uploads/images/gallery/2021-05/scaled-1680-/icon-microsoft-authenticator1.png){kind=icon}
The default (and most straightforward, quickest) method that Grace IT sets up everyone with is the push notification through the Microsoft Authenticator App. When a sign in attempt is made to your account, a push notification is sent to your phone asking to Approve or Deny a login attempt. This method can be changed to another one, if you desire, through your Microsoft Account page.
Change or Add method
You can access your Microsoft Account page here. The link takes you to the security section. Here you can remove and add methods (Phone text or call, Email, or an Authenticator App), as well as see your default and current methods.