References: https://docs.microsoft.com/en-us/azure/active-directory/user-help/security-info-setup-signin
When multi-factor authentication is enabled on your account, you will be prompted in Outlook to register a device for multi-factor authentication:
If you don’t have your Agency cell phone or personal cell phone handy, you can choose “skip for now”. Note that you can only delay for 14 days. After 14 days, you will be forced to register a device.
You can select one of three options for multi-factor authentication: the Microsoft Authenticator app (preferred), a text message, or a phone call. If you chose to use a hardware token, see option 4.
Option 1: Setting up the Microsoft Authenticator app
- On your cell phone, download the Microsoft Authenticator app from the Google Play Store or the Apple Store. If you have an Agency phone, the Microsoft Authenticator app might already be installed.
- When prompted in Outlook, click Next to setup the app.
- Under “How should we contact you?”, select Mobile App.
- Select “Receive notifications for verification”.
- Click “Set up” to setup the mobile app.
- On your cell phone, open the Microsoft Authenticator app.
- Add an account.
- Choose “work or school account”.
- Hold your phone camera up to the computer screen to scan the QR code.
- Back on your computer, click Next.
- Wait for the “Approve sign-in?” prompt on your cell phone, then click Approve.
- In Step 3, enter either your personal cell phone number or your work number as a backup authentication method.
- Ignore the app password and click Done.
- You’re done! When you sign into Outlook, choose “Remember this device for 14 days” so you aren’t prompted every day.
Option 2: Hardware token
- IT will provide a hardware token for you.
- Once you have your token, IT will enable MFA for your account.
- The next time you login to Outlook, you’ll be prompted to enter a verification code. Press the power button on the token and enter the 6-digit code.
- If the code expires, press the power button and enter the new code.