Microsoft Authenticator is an app for Android and Apple mobile devices.
The app prompts for authorisation if an internet connection is available, or can provide a one-time password.
- Download Microsoft Authenticator from your device's app store
- In a web browser, sign in to the My Sign-Ins website using your username in the format abcd1234@ox.ac.uk, SSO password, and MFA if it is already set up on your account
- If account setup does not start automatically, select +Add sign-in method
- Select Microsoft Authenticator > Next
- If available, select Pair your account to the app by clicking this link (then skip to step 8)
- Select Next or Show QR code
- In Microsoft Authenticator, select + > Add account > Work or school Account
- Select Scan a QR code, then scan the QR code shown on the My Sign-ins website
- Return to the My Sign-Ins website, then select Next to display a two-digit number
- Return to Microsoft Authenticator, then provide the test notification with the two-digit number from the My Sign-Ins website
Many authenticator apps, can provide a one-time password. They should not require internet access or phone connectivity.
The setup process is provided below, but you may need to refer to your apps documentation.
- Download and install the authenticator
- Open the authenticator and start the process to add a new account
-
In a web browser, sign in to the My Sign-Ins website using your username in the format abcd1234@ox.ac.uk, SSO password, and MFA if it is already set up on your account
-
If account setup does not start automatically, select +Add sign-in method
-
Select Microsoft Authenticator > I want to use a different authenticator app > Next
- If a QR code is displayed, either scan it with the authenticator (then skip to step 9) or select Can't scan image
- In the authenticator, provide the secret key displayed on the MySign-Ins website
- If asked to select the token length, choose 6 digit
- Return to the My Sign-Ins website, select Next then provide the 6 digit code displayed in the authenticator
Zoho OneAuth is an alternative authenticator app available for Windows, macOS, iOS, and Android devices.
OneAuth provides a one-time password.
- Install OneAuth from the Microsoft, Apple or Android app store (titled Authenticator App - OneAuth)
- Sign in to OneAuth using a Zoho account. You can create a free Zoho account using the email address of an account that you can currently access
- If prompted to go passwordless select Skip, any prompts for permissions can be denied
- In a web browser, sign in to the My Sign-Ins website using your username in the format abcd1234@ox.ac.uk, SSO password, and MFA if it is already set up on your account
- If account setup does not start automatically, select + Add sign-in method
- Select Microsoft Authenticator > I want to use a different authenticator app > Next > Can't scan image?
- Return to OneAuth, then from the menu bar select:
Windows OTP Authenticator > + Add new > Manual entry macOS Authenticator > Add new > Manual entry iOS Authenticator > Add new > Manual entry Android Authenticator > Add new > Enter secret manually - Complete the displayed form with:
Issuer Name Oxford University SSO Username Your username in the format abcd1234@ox.ac.uk Secret Key The secret key displayed on the My Sign-Ins website Choose Folder My Accounts Choose Brand Your choice of icon - Return to the My Sign-ins website, select Next then provide the 6 digit code displayed in OneAuth
Back up your secret key
Back up your key to allow it to be restored if you sign out of OneAuth or install it on a new device.
- In OneAuth, from the menu bar select either OTP Authenticator or Authenticator
- Select Back up Secrets > SET UP
- Provide a recovery passphrase (minimum 8 characters)
An automated call can be made to a land or mobile telephone number, prompting for the press of a specified key.
-
In a web browser, sign in to the My Sign-Ins website using your username in the format abcd1234@ox.ac.uk, SSO password, and MFA if it is already set up on your account
-
If you are also going use text messages for MFA, add it first
-
If account setup does not start automatically, select +Add sign-in method
-
Select one of the phone options, then provide the phone number to use
- Select Call me > Next, then verify the call made to the phone
A one-time password can be sent to a telephone number.
-
In a web browser, sign in to the My Sign-Ins website using your username in the format abcd1234@ox.ac.uk, SSO password, and MFA if it is already set up on your account
- If you do not enter the account setup automatically, select +Add sign-in method
- Select Phone, then provide the phone number to use
- Select Text me a code > Next, then provide the 6 digit verification code sent to your device
A security key is a device you plug into your computer to authenticate your account.
The setup of keys may vary slightly, but another MFA method must already be in place to provide the authentication required before or during setup.
-
In a web browser, sign in to the My Sign-Ins website using your username in the format abcd1234@ox.ac.uk, SSO password and MFA
- Select +Add sign-in method > Security Key > USB device > Next
- If prompted, provide authentication using your existing MFA method
- Select Security key > Next > OK > OK
- Insert the security key into your device's USB port
- Provide a pin for the security key
- If required, touch the security key
- Provide a name to help you to identify the key
All support for security keys is provided by your local IT support team.