Add authentication methods to a Microsoft 365 account (MFA)

To strengthen the security of your Microsoft 365 account, it is essential to add multiple authentication methods. This tutorial will guide you through the steps required to add these methods through the Microsoft security portal.

Step 1: Access the security portal

1. Open your browser and go to the following address: https://mysignins.microsoft.com/security-info.
2. Sign in with your Microsoft 365 credentials.

Step 2: Add an authentication method

1. Once logged in, you will see a screen similar to the one above. Click Add Sign-in Method.
2. You will have several options to add an authentication method. The most common methods are:

• Phone: Receive a code by SMS or call.
• Microsoft Authenticator: Use the app to approve sign-in requests.
• Password: Change or update your password.

Step 3: Configure each method

• Phone :

  1. Select Phone from the drop-down menu.
  2. Enter your phone number and choose whether you prefer to receive an SMS or a call.
  3. Follow the instructions to verify your number.

• Microsoft Authenticator :

  1. Select Microsoft Authenticator.
  2. Follow the instructions to install the app on your smartphone if you haven't already.
  3. On the app, choose “Add an account” then “Work or school account”.
  4. Scan the QR code displayed on the screen with the app to link your account.

• Password :

  1. You can also update your password yourself by clicking Change next to Password.

Step 4: Check and save settings

Once you've added and configured your authentication methods, make sure everything is correct and working. Microsoft will automatically recommend the most appropriate method for signing in.

Step 5: Enable Passwordless Sign-In

Passwordless sign-in enhances security and simplifies access to your Microsoft 365 account.

Once configured, signing in via the Microsoft Authenticator app displays a prompt asking the user to tap a number in the app, without requiring a username or password.

1. Open the Microsoft Authenticator app on your smartphone.
2. Select the relevant account (e.g. Stimulus Conseil, Talentis...).
3. Under "Other ways to sign in", tap "Set up passwordless sign-in requests".
4. Follow the on-screen instructions to complete the setup.

• Depending on your device, authentication will be done via Face ID, fingerprint, or your phone’s unlock code.
  

Step 6 (Optional): Add a FIDO2 Security Key (YubiKey)

This step only applies to employees who have been provided with a YubiKey USB security key by Human & Work.

A physical security key is the strongest authentication method available. It fully replaces your password and protects your account even against phishing attacks.

1. From the portal https://mysignins.microsoft.com/security-info, click Add sign-in method.
2. In the dropdown menu, select Security key.
3. Choose the key type: USB device.
4. Click Next, then Start.
5. Insert your YubiKey into a USB port on your computer when prompted.
6. Tap the gold button on the YubiKey to confirm the registration.
7. Set a PIN for your security key. Choose something memorable, it will be required every time you sign in.
8. Give your key a name (e.g. YubiKey - First Last) to identify it easily in your methods list.
9. Click Done.