Enabling 2-Factor Authentication (2FA)

2-Factor Authentication (2FA) - also known as Multifactor Authentication (MFA) - is the single-best defense for protecting your online accounts. Using 2FA for your work email account is strongly encouraged, and in some organizations, enforced.

What is 2FA? Why should I use it?

When enabled, 2FA protects your account by verifying that the person attempting to log into your account:

Knows your account password; and
Has physical possession of a trusted device (your mobile phone)

Thus preventing unauthorized access to your account, even if your password has been exposed.

2FA codes are private information. You will not be asked to disclose this information by third-party service providers, except for the purposes of identity verification (eg. a code generated by a support representative during a call).

If you need to share sensitive information with Bitstream, learn about verified contact.

Select your email platform:

Using SMS (text messages)

1. Begin by visiting myaccount.google.com. You will be prompted to log in.

2. Select Get Started

3. Enter your mobile phone number, then select Next

4. You will receive a six-digit code on your phone. Enter the code here.

5. Once confirmed working, select Turn on

That’s it - 2FA is now enabled on your account! Read the next section for more advanced protection.

Using an Authenticator app (Authy)

Using SMS-based 2FA (as set up above) can still be considered a risk. However rare, SIM-jacking - whereby an attacker activates your mobile service on an unauthorized device - is an inherent risk in this setup. To mitigate this risk, you may opt to use an Authenticator app instead.

Many apps exist to facilitate this, but we’ll use Authy for demonstrative purposes.

1. Begin by downloading Authy on your mobile device: Android | iOS

Complete the in-app set up, then select the Add account option.

2. From the same 2FA Settings page, select Authenticator app

3. Select your mobile device’s operating system

4. You will be presented with a QR Code. Scan the code using your Authy app. Click Next

5. Enter the code displayed on your mobile phone

That’s it! You can now use the Authenticator app method when signing in.

1. Begin by downloading Microsoft Authenticator on your mobile device: Android | iOS

2. On your workstation, visit myaccount.microsoft.com. You will be prompted to log in.

Guided Enrollment

If your organization enforces 2FA, you will likely see a prompt upon logging in asking you to begin.

If you do not see the prompt, skip to the Manual Enrollment section below.

1. You should see the setup wizard. Select Next

2. Important: Disregard the instructions provided by Microsoft on this step, and simply select Next

3. A unique QR code will be displayed on this step, which you will use your mobile device to scan.

Skip to the Microsoft Authenticator Set Up section to complete enrollment.

Manual Enrollment

1. On your workstation, visit the Account Security Center: mysignins.microsoft.com

2. Select Add method

3. From the dropdown, select Authenticator app, then select Add

4. Select Next

5. Important: Disregard the instructions provided by Microsoft on this step, and simply select Next

6. A unique QR code will be displayed on this step, which you will use your mobile device to scan.

Microsoft Authenticator Set Up

Security restrictions prevent us from providing screenshots for this procedure.

1. On your mobile device, open the Microsoft Authenticator app which you have just installed. Accept the Privacy Policy to continue.

2. Select the Scan a QR code option. Allow the app to access your camera, if prompted.

3. The app will open your camera viewfinder. Point your phone at the QR code displayed on your workstation.

4. Once scanned, select Next on your workstation. You will be asked to accept the log in attempt on your mobile device. Select Accept when prompted.

That’s it! Occasionally, you will be prompted to verify your log in. Use the Microsoft Authenticator app on your mobile device to do so.

Still need help? Submit a Ticket

Registering Mobile Device with Microsoft 365