Multi-Factor Authentication (MFA) Guide

MFA is a security measure used to protect your digital identity at the University of Guelph (U of G) and is required for all users. You will be prompted to satisfy MFA after successfully entering your password when signing in to a U of G Single Sign-On (SSO) protected service.

1. First-time MFA setup: You will be prompted to set up 2 additional sign-in methods when you first log in to any U of G Microsoft SSO protected service, such as Gryph Mail, CourseLink, or Webadvisor.
   1. The Microsoft Authenticator App is the most secure and versatile MFA method and is recommended as your default sign-in method.
   2. The first method you set up will be set as your default sign-in method, which means you will be prompted for this method every time you need to verify your identity using MFA.
   3. While you can use an external email address or set security questions as your second authentication method, please note that these methods cannot be used for MFA: they can only be used to reset your password if you forget it. For more information on which methods can be used for MFA and which cannot, you can refer to the "Authentication methods for MFA vs Self-Service Password Reset" table.
2. Manage your MFA methods: You can manage your MFA methods, including adding or removing methods and setting your default sign-in method at https://aka.ms/mysecurityinfo.
3. Changing phones or lost access to one of your MFA methods? Please set up 2 or more MFA methods on your account so you can use another method to remove your old method, set up new methods, and change your default sign-in method.
4. Forgot your password? You can reset your U of G central login account password using any 2 of your MFA methods.
5. MFA Frequently Asked Questions (FAQ): Please visit our MFA FAQ for answers to common MFA questions.