How Do I Use Microsoft Authenticator for Two-Factor Authentication (2FA)?

Questions Answered in this Article

Setting Up & Managing Microsoft Authenticator

Additional Support

Answers

All faculty, staff and students have the ability to use Microsoft Authenticator as their two-factor authentication (2fa) method. 
 

Phone or Tablet Setup 

*Please note: The Microsoft Authenticator app must be installed on a device such as a smartphone or tablet. It cannot be installed on a computer.

The setup instructions differ slightly depending on whether you start the process on the same device where the app will be installed (one-device setup) or on a computer to help set up the app on your phone or tablet (two-device setup).

Start Setup Using One Device (Your Phone or Tablet)  
Start Setup Using Two Devices (Computer + Phone or Tablet)

Start Set Up Using One Device

*Please note: These instructions are for setting up Microsoft Authenticator using one device, meaning you only have your phone or tablet available. If you are using a computer to help set up the app on your phone or tablet, please follow the two-device setup instructions.

  1. Install the Microsoft Autheticator app.
  2. Log in to your Microsoft Account with your UNCW email and password.
     
  3. Click "Update Info" in the "Security Info" section. 

    Microsoft Account Page select update info in the security info section
     
  4. Select "+Add sign-in method".

    Image of the security info screen showing the option to click to "add a sign in" method

  5. Choose "Microsoft Authenticator".

    Add a sign in method prompt highlighting Microsoft authenticator.
     
  6. If you already installed the app in Step 1, skip the Install Microsoft Authenticator prompt by clicking Next.

    install Microsoft authenticator app prompt which can be skipped if you installed it in step 1 by clicking next
     
  7. Select “Pair your account to the app by clicking this link.” 

    TECH TIP: If you see an error while pairing your device that says, “We’re sorry, we ran into a problem. Please choose Next and try again,” make sure the Microsoft Authenticator app is installed before clicking the pairing link. To fix this, close the prompt, install the Authenticator app, then return and add it as one of your authentication methods.  


    Pair authenticator with your account prompt highlighting the pair your account button.
     
  8. Click "Allow" in response to the "Allow Authenticator to send you notifications?" prompt.

    Allow authenticator to send you notifications prompt, select allow
     
  9. Select "Accept" to the "Microsoft respects your privacy" prompt. 

    Microsoft respects your privacy prompt, select accept.
     
  10. Your UNCW account should now be added to the Authenticator app.

    UNC Wilmington account added to the authenticator app
     
  11. Return to the setup page and click “Next” to test the Authenticator app.

    The setup page highlight next after you've paired your device.  
     
  12. Enter the code from the setup page in the Microsoft Authenticator app and select "Yes". 

    Let's Try it out Microsoft Authenticator prompt providing a code to test on your app. Microsoft authenticator prompt asking if you are trying to sign in and requiring you to enter the code or number to verify.
     
  13. After entering the code on your device, the setup page will refresh and confirm that Microsoft Authenticator has been added as a sign-in method. 

    Success prompt from Microsoft setup page indicated that authenticator has been added.
     

Set Up With Two Devices (Computer+ Phone or Tablet)

 

 
  1. Install the Microsoft Autheticator app.
  2. Log in to your Microsoft Account with your UNCW email and password.
     
  3. Click "Update Info" in the "Security Info" section. 

    Microsoft Account Page select update info in the security info section
     
  4. Select "+Add sign-in method".

    Image of the security info screen showing the option to click to "add a sign in" method

  5. Choose "Microsoft Authenticator".

    Add a sign in method prompt highlighting Microsoft authenticator.
     
  6. Skip the next two prompts to install the app and set up your account by clicking "Next" on each screen.

    two prompts on the set up page which need to be skipped by pressing next, install the app and set up in the app.
     
  7. Open the Microsoft Authenticator app on your phone and select “Scan a QR code.” Then, use your device to scan the QR code from the setup page. This connects the app to your account.

    Microsoft Authenticator App welcome screen highlighting "Scan QR Code" button
     
  8. After scanning the QR code, return to the setup page and click “Next.”

    Scan the QR code prompt, click next.
     
  9. Enter the code from the setup page in the Microsoft Authenticator app and select "Yes".
     
  10. After entering the code on your device, the setup page will automatically refresh and confirm that Microsoft Authenticator has been added as a sign-in method.
     
  11. The next time you log in, you will see "Approve my request on my Microsoft Authenticator app" in your list of sign-in selections.


Set Up Passwordless Login

*Please note: Passwordless authentication lets you sign in without typing a password. Instead, it uses other two-factor methods such as biometrics, device-based authentication or hardware keys. Microsoft verifies your identity by combining something you have, like a registered device, with something you are or know, like a fingerprint, FaceID or PIN. This creates a secure login experience without ever entering a password. 

  1. Open the Microsoft Authenticator app on your device and select your registered account. 
     
  2. Select “Set up Passwordless sign-in requests”. 
     
  3. Click “Continue” to begin the process for setting up the Passwordless feature.
     
  4. Verify your identity.
     
  5. Register your device by clicking Register on the next prompt(s). This step is required to enable passwordless authentication and only collects basic device information for verification.
     
  6. Next, you will be asked to use your device’s screen lock, such as Face ID, Touch ID, or a PIN, to create your passwordless sign-in method.
     
  7. Wait approximately five minutes before signing in with passwordless to ensure the changes finish syncing.

If you need further assistance, please submit a service request or CHAT with TAC.

Print Article