Multi-stage authentication for Taitotalo students

What is MFA?

MFA, or Multi-Factor Authentication, is a security method that uses multiple factors to verify identity before granting access to information systems, applications or services.  MFA is based on the idea that only one factor, such as a password, is no longer enough for protection. 

How does MFA work?

MFA asks the user to enter a password and then give more information for verification, like a unique code. The user gets the code through a mobile app or via text message. Systems may also use other factors, such as user location data or authentication based on security questions. 

Typically, MFA uses three different factors

Password: The traditional factor based on user’s information as the first level of protection. 
Something the user owns: This can be a physical or electronic device, like a smartphone, with an application that generates unique codes. 
Biometrics: The user's physical characteristics, such as fingerprints, facial recognition or iris patterns. Biometrics are commonly used in smartphones or computers to identify and verify the user's identity.

Benefits of MFA for Taitotalo's online service users

Better Account Security
MFA significantly improves the security of your account. Even if your password is compromised or stolen, an attacker cannot access your account without additional verification.

Phishing Prevention
MFA can help combat phishing attempts and fraud. Even if an attacker finds out your username and password, they cannot log into your account without additional verification.

Easy to use
Taitotalo's MFA solution is user-friendly and easy to use. You can use a phone application that generates time-based and challenge-based code tokens.

Benefits of MFA for Taitotalo

Reducing Account Misuse
If someone finds a user's credentials, they cannot access the account without additional verification. This helps prevent unauthorised access to Taitotalo's systems and ensures that only legitimate users can log in.

Protecting Sensitive Information
Taitotalo's systems store sensitive information, such as student and customer data, corporate secrets and business confidentialities. MFA helps to protect such information, as only password protection may not be enough. MFA is an additional barrier for attackers trying to access the company's sensitive data.

Compliance with Security Requirements
Many regulatory authorities and industry standards require the use of MFA in secure environments.

MFA User Instructions 
All instructions apply to Taitotalo's Microsoft account.

First Login
To set up your Taitotalo Microsoft account, you need additional information, which each student defines during the account activation.  
If you have a mobile phone but no internet connection, choose option 1. If you have a mobile phone and internet connection, choose option 2. 

1. Verification Method own phone (SMS/call) (Security Information: 2) phone number, 2) email)

2. Verification Method Microsoft Authenticator (Security Information: 1) MS Authenticator, 2) phone number, 3) email) 

• Download Microsoft Authenticator
• Instructions: How to use the Microsoft Authenticator app

Next Logins
After activating your Taitotalo Microsoft account (see the first login), you log in with your Taitotalo Microsoft ID and its verification.

Verification Method own phone (SMS/call) or Method Microsoft Authenticator 

Password reset
After adding security information to your Taitotalo Microsoft account in steps 1a or 1b, you can use them to reset a forgotten password. The service is available 24/7.

Security requirements for your Taitotalo Microsoft account password

• Character count: 12– 20
• Must include uppercase letters, lowercase letters, special characters and numbers

Links

• Download Microsoft Authenticator
• Download Microsoft Outlook (iOS and Android)
• What is multi-factor authentication?
• Using Microsoft Authenticator authentication app
• Instructions for Outlook for iOS- ja Outlook for Android
• Verification Method Outlook Mobile