Multi-Factor Authentication (MFA)

Multi-Factor Authentication (MFA) for Staff and Students

Multi-factor authentication (MFA) adds an extra layer of security when using online services. It requires users to provide more verification factors to gain access. This is often set up for online services that need extra security such as accessing your personal email or online banking.

At St. George’s, MFA will be required when accessing any Office365 app for the first time on a particular computer or device, such as Teams. Please note that once you have successfully signed in with MFA on a device, it will remember that device. You can select the 'don't ask again' option for the next 30 days so you will not be prompted to sign in with MFA every time you want to use an Office365 app. You will only be prompted for MFA when you are logging into Office365 apps from a new location/device or up to every 30 days.

How to set up MFA

A copy of this guide can be downloaded here (pdf).

You will be able to set up your Office365 additional sign-in methods prior to the IT department enforcing MFA on your Office365 account.

Visit mysignins.microsoft.com/security-info and log in with your full email address and password. Note: If you are on the Kingston University or NHS Trust network, you will need to open this link in a private browsing window.
Select Add method.

Security Info. Click Add method

You can then select an additional sign-in method from the following:
- Authenticator App
- Phone
- Office Phone
- Security Key

The additional sign-in methods on this page below are ordered from our most preferred to least preferred. Therefore, we recommend the Microsoft Authenticator App as your primary additional sign-in method.

Note: You should add more than one multi-factor authentication method in the event your initial method is unavailable.

View all Close all

Method 1: Microsoft Authenticator App

Install the Microsoft Authenticator App on your phone.
- Scan the QR code below to take you directly to the app, or search for Microsoft Authenticator in the Play Store (Android) / App store (iPhone).
- Once the app is installed, select Add Account then Work or school account, then select Scan a QR Code. Enable Camera Permissions if needed.
Switch to your browser then click Next.

Start by getting the app

Click Next.

Set up your account

A QR code prompt will appear in your browser. Use the Authenticator App to scan the code. After scanning, click Next.

Scan the QR code

Afterwards, you will receive a test notification. Press Approve on your phone then click Next on your browser.

Let's try it out Notification approved

Method 2: SMS

Method 3: Phone Call

Method 4: Landline Phone

Method 5: Security Key

Note: This additional sign-in method requires at least one other verification method set up beforehand. To use a security key for MFA, you will need to log a ticket with ITAV support to discuss how the other methods will not be sufficient as additional sign-in methods.
Note: To register a Yubi key you must use a browser that supports FIDO2 security keys, such as Microsoft Edge.
Sign in with a two-factor authentication.

Setup a security key

Once logged in, select USB device.

Choose USB device

You will be prompted to have your key ready. Click Next.

Have your key ready

Shortly, a new window will appear to set up your Yubi key.

Your PC will redirect to a new window

Insert your Yubi key into an available USB slot and touch the gold circle.

Insert your security key and touch it

You will be asked to set up a new PIN for your Yubi key. Create a PIN then retype your PIN to confirm it. Click Next.

Setup a new PIN

Microsoft will ask to be allowed to see your Yubi key. Click Allow.

Allow site to see security key

Lastly, name your Yubi key. Click Next.

Name your security key

You will see a confirmation message for setting up your Yubi key. Click Done.

You're ready to go

Managing your MFA settings

Once you have signed in using multi factor authentication, you will not be prompted to authenticate again unless you are signing in on a new location or device. If you wish to add or change any of these authentication methods, for example changing a phone number, visit mysignins.microsoft.com/security-info. From the Security info page, you will be able to add, delete and change default sign-in methods.

Manage your MFA settings in security info

Note: If you remove all MFA options whilst your account is enrolled into MFA, the next time you log in to Office 365 apps you will be prompted to add at least one additional verification method (see below).

What if I have already been enrolled into MFA without adding additional sign-in methods?

If your account has already been enrolled into multi-factor authentication without adding a second sign-in method, it will ask you for More information required the next time you log into an Office365 app. Click Next and enter your SGUL password to verify your login and continue. You can then choose how to set up your multi-factor authentication via a drop down menu.

More information required

If you require further assistance with regards to Office365 MFA, please contact ITAV Support or visit our helpdesk at J0.49 on Monday - Friday between 12 and 2 pm.

Explore our Tooting campus

We want to improve healthcare for everyone

Research culture at St George's

Education transformation project

Noise Network Plus: The £1.8 million initiative to engineer a quieter future

Donate today

Your impact

Multi-Factor Authentication (MFA)