Enabling 2-Factor Authentication (2FA)⚓︎
2-Factor Authentication (2FA) - also known as Multifactor Authentication (MFA) - is the single-best defense for protecting your online accounts. Using 2FA for your work email account is strongly encouraged, and in some organizations, enforced.
What is 2FA? Why should I use it?
When enabled, 2FA protects your account by verifying that the person attempting to log into your account:
- Knows your account password; and
- Has physical possession of a trusted device (your mobile phone)
Thus preventing unauthorized access to your account, even if your password has been exposed.
Danger
2FA codes are private information. You will not be asked to disclose this information by third-party service providers, except for the purposes of identity verification (eg. a code generated by a support representative during a call).
If you need to share sensitive information with Bitstream, learn about verified contact.
Which platform does your organization use?
Choose your collaboration platform from the options below.
Using SMS (text messages)⚓︎
1. Begin by visiting:
You will be prompted to log in
2. Select Get Started
3. Enter your mobile phone number, then select Next
4. You will receive a six-digit code on your phone. Enter the code here.
5. Once confirmed working, select Turn on
That's it - 2FA is now enabled on your account! Read the next section for more advanced protection.
Using an Authenticator app (Authy)⚓︎
Warning
Using SMS-based 2FA (as set up above) can still be considered a risk. However rare, SIM-jacking - whereby an attacker activates your mobile service on an unauthorized device - is an inherent risk in this setup. To mitigate this risk, you may opt to use an Authenticator app instead.
Many apps exist to facilitate this, but we'll use Authy for demonstrative purposes.
1. Begin by downloading Authy on your mobile device:
Complete the in-app set up, then select the Add account option
2. From the same 2FA Settings page, select Authenticator app
3. Select your mobile device's operating system
4. You will be presented with a QR Code. Scan the code using your Authy app. Click Next
5. Enter the code displayed on your mobile phone
1. Begin by downloading Microsoft Authenticator on your mobile device
2. On your workstation, visit the following link:
You will be prompted to log in
Guided Enrollment⚓︎
If your organization enforces 2FA, you will likely see the following prompt upon logging in:
If so, select Next to begin.
If not, skip to the next section.
1. You should see the following wizard. Select Next
2. You will see the following screen.
Important: Disregard the instructions provided by Microsoft on this step, and simply select Next
3. A unique QR code will be displayed on this step, which you will use your mobile device to scan.
Skip to the final section to complete enrollment
Manual Enrollment⚓︎
1. On your workstation, visit the Account Security Center:
2. Select Add method
3. From the dropdown, select Authenticator app, then select Add
4. Select Next
5. You will see the following.
Important: Disregard the instructions provided by Microsoft on this step, and simply select Next
6. A unique QR code will be displayed on this step, which you will use your mobile device to scan.
Microsoft Authenticator Set Up⚓︎
Note
Security restrictions prevent us from providing screenshots for this procedure.
1. On your mobile device, open the Microsoft Authenticator app which you have just installed. Accept the Privacy Policy to continue
2. Select the Scan a QR code option. Allow the app to access your camera, if prompted
3. The app will open your camera viewfinder. Point your phone at the QR code displayed on your workstation, which was generated in the prior steps
4. Once scanned, select Next on your workstation. You will be asked to accept the log in attempt on your mobile device. From your mobile device, select Accept when prompted
That's it! Occasionally, you will be prompted to verify your log in. Use the Microsoft Authenticator app on your mobile device to do so.