Why are we doing this: For some time we’ve suffered from the fallout of PHISH’ing, SPAM and other CyberSecurity attacks and despite our endeavours such attacks and their efficacy are increasing. Lincoln University identities are being compromised regularly and once the first account is compromised this inevitably results in further SPAM, PHISH and RansomWare attacks. One effective tool to mitigate these attacks is multi-factor authentication. This change is to help safeguard us all in our employment, study and research activities.
 
 
What is it: Multi Factor Authentication (MFA) also known as two factor authentication (2FA) is simply an additional level of security to complement your account password. If you’ve used online banking, LinkedIn, Twitter, Amazon, Apple ….. then you’re already familiar with MFA. Normally you get a second form of authorization via a PIN from an authenticator application or as a text message. There are other ways too; email, phone call, authentication tokens …. the most common are PIN codes from application authenticators or text message. If you only ever logon while on campus, you won’t notice any change. However for most of us who log on off campus, you will be prompted for an authentication response from your preferred MFA tool. More information on Microsoft’s authenticator application is available here https://www.microsoft.com/en-us/account/authenticator.
 

 
Who does it affect: If you only ever use Lincoln University services (Office365, MyDay, LUCAS…. ) when you’re on campus read no further as there’s no effect whatsoever! However if like me you do use Office 365 services; email, calendar, MyDay, teamsites etc when you’re off campus too then this will impact access to these services.
 

 
What’s the process: You will be advised via email to go to this page to get setup. Part of this is process requires you to select your preferred MFA method (our Security folk recommend application authenticator) and once that’s done IT will flick the switch at 13:00 on Wednesday 22 May 2019 and from then on then on whenever you use services which leverage your Lincoln University Office 365 identity OFF CAMPUS you will be challenged for the second factor authorisation which could be a PIN code you’ve obtained from the Microsoft Authenticator or text on your cell phone – whichever method you selected and setup.
 

 
What can I do now: You are welcome to setup your preferred method(s) for authentication any time but be sure to do so BEFORE 13:00 Wednesday 22 May 2019. To do this please go here https://aka.ms/proofup to get started. 
 

 
Concerns or complications: If you want to know more please check out https://docs.microsoft.com/en-us/azure/active-directory/authentication/concept-mfa-howitworks and if you still have questions after reading that please contact your IT team.