Live now: Board of Curators meeting

UM System

Security updates to Multi-Factor Authentication Application

As part of our strategic effort to continuously evaluate and improve the security posture of the University, security updates will be made to the Microsoft Authentication App for all users across the UM System.

Beginning in January 2023, the Division of IT will be enabling additional security functions within the Microsoft Authenticator application. If you have the Microsoft Authenticator App on your mobile device, this security update will change the way you verify your identity and location on your app.

These changes include:

Number Matching

After you enter your username and password in the application you are authenticating to, the mobile application will ask you to type in a 2-digit code that is displayed on the login screen to further verify your identity. Currently the app requires you to click accept or deny on the prompt. This change ensures the user who accepts the prompt is the one who is authenticating to the application.

MFA additional context

When you receive the prompt in the Authenticator App you will also see additional context on where that authentication request came from. This will include the application you are signing into and the location where the sign in originated from.

                                          Before                                                           After

 

Frequently Asked Questions

Can I disable number matching in Microsoft Authenticator push notifications?

No, Microsoft enables it by default for ALL tenants to protect users from MFA fatigue attacks. It is not configurable.

Why is the number not displayed in the Microsoft Authenticator app on iOS/Android devices?

Older versions of Microsoft Authenticator may need upgrade to the latest version. Download the latest versions from the App Store and Google Play Store.

Why is the user prompted to select from three numbers in the Microsoft Authenticator app?

Older versions of Microsoft Authenticator may need upgrade to the latest version. Download the latest versions from the App Store and Google Play Store.

Can I use number matching on Apple Watch?

No, Apple Watch does not support number matching. You may need uninstall the Microsoft Authenticator Apple Watch app.

Why can’t I view the number when signing in from the Microsoft Authenticator app?

In that scenario, select I can't see the number on the screen that hides the dialog for five seconds (example screen shown below.

 

 

Reviewed 2023-01-05