{"id":2429,"date":"2014-05-07T11:46:00","date_gmt":"2014-05-07T18:46:00","guid":{"rendered":"https:\/\/thebeagle.itgroove.net\/?p=1493"},"modified":"2023-02-24T21:48:28","modified_gmt":"2023-02-24T21:48:28","slug":"o365-multifactor-authentication-in-depthpart-2how-it-works-inside-o365","status":"publish","type":"post","link":"https:\/\/regroove.ca\/archive\/2014\/05\/07\/o365-multifactor-authentication-in-depthpart-2how-it-works-inside-o365\/","title":{"rendered":"O365 MultiFactor Authentication in depth\u2013Part 2\u2013how it works inside O365"},"content":{"rendered":"

In my last post I outlined the basics of multifactor authentication and also discussed the method that Office365 uses to implement it.\u00a0 In this post I will describe how it actually works.<\/p>\n

O365 multifactor authentication can be enabled user-by-user within O365 by your O365 admin.\u00a0 Once your account has been enabled for mutlifactor authentication the following things will happen:<\/p>\n

\"SNAGHTMLfab0b45\"<\/a><\/p>\n

Clicking on the Set it up now button <\/strong>causes the following series of screens to be displayed:<\/p>\n

\"SNAGHTMLfad42e5\"<\/a><\/p>\n

Note that you can select the type of contact method, I want an SMS message.<\/p>\n

\"image\"<\/a><\/p>\n

And when I click verify now<\/strong> \u2026 I received an SMS message with a code that I have to enter on the following screen:<\/p>\n

\"image\"<\/a><\/p>\n

Then I click verify<\/strong> \u2026<\/p>\n

\"image\"<\/a><\/p>\n

\"image\"<\/a><\/p>\n

This is an important step.\u00a0 The multifactor authentication process does not work directly with LOCAL apps like Outlook or your Lync client even if those apps are connected to your O365 account.\u00a0 The \u201capp password\u201d referenced above is the \u201clink\u201d between the multifactor authentication backend in O365 and your application.\u00a0 Think of it as a \u201csuper password\u201d that you provide your app in order for it to continue to connect to O365.\u00a0 The app password is generated by O365 and you plug it into your apps in place of your \u201cnormal\u201d password.<\/p>\n

\"SNAGHTMLfb5658a\"<\/a><\/p>\n

I have obscured part of the app password but you get the drift, it is quite long and totally unique.\u00a0 The help links provide you with details about how to plug in the app password to your apps and you can set up more than one app password, if you want, to use with differing apps.\u00a0 I chose to stick with one for now.<\/p>\n

Clicking done<\/strong> completes the process.<\/p>\n

From this point forward whenever I login to O365 the following process takes place:<\/p>\n

\"SNAGHTMLfba50d1\"<\/a><\/p>\n

Note that I am signing in with my login and password, nothing different at this point.<\/p>\n

\"image\"<\/a><\/p>\n

Ah ha!\u00a0 Multifactor authentication has kicked in and is asking me for the verification code that has been sent to my phone which I enter (it is one time use, by the way).<\/p>\n

\"image\"<\/a><\/p>\n

Now I click Sign In<\/strong>, the wheels spin for a bit and I\u2019m in!\u00a0 Multifactor authentication has confirmed my identity and granted me access to the system.<\/p>\n

This process works because it is assumed<\/span><\/strong> that you are in sole possession of your O365 login and password and that you are also in sole possession of your smartphone (which you have secured with a lockscreen password, of course!).\u00a0 Obviously, if another person knows your O365 login and password as well as has possession of your phone (and the PIN for the lockscreen) then that person can gain access to O365 as you.\u00a0 It is vitally important that you do NOT share your O365 login and password (why would you???) and you should secure your phone. The verification code that is sent to your phone is only valid for a single use and it is time sensitive, it does not last \u201cforever\u201d whether or not it is actually used.\u00a0 Therefore, someone might be able to see the code when you get it but they cannot use it down the road to try and gain access to O365 as you; once the code is entered on the login screen it is \u201cthrown\u201d away.<\/p>\n

There are other safeguards built in to the backend of the system that I won\u2019t detail here.\u00a0 If you follow the basics as detailed in the previous paragraph then security of your O365 account will be maintained.<\/p>\n

I think it is a great system and I appreciate the extra layer of security that multifactor authentication provides.\u00a0 I urge you to try it out with your O365 account.<\/p>\n","protected":false},"excerpt":{"rendered":"

In my last post I outlined the basics of multifactor authentication and also discussed the method that Office365 uses to implement it.\u00a0 In this post I will describe how it actually works. O365 multifactor authentication can be enabled user-by-user within O365 by your O365 admin.\u00a0 Once your account has been enabled for mutlifactor authentication the … <\/a><\/p>\n","protected":false},"author":10,"featured_media":1496,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"inline_featured_image":false,"footnotes":""},"categories":[247],"tags":[459,501],"acf":[],"yoast_head":"\nO365 MultiFactor Authentication in depth\u2013Part 2\u2013how it works inside O365 - Archive<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/regroove.ca\/archive\/2014\/05\/07\/o365-multifactor-authentication-in-depthpart-2how-it-works-inside-o365\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"O365 MultiFactor Authentication in depth\u2013Part 2\u2013how it works inside O365 - Archive\" \/>\n<meta property=\"og:description\" content=\"In my last post I outlined the basics of multifactor authentication and also discussed the method that Office365 uses to implement it.\u00a0 In this post I will describe how it actually works. O365 multifactor authentication can be enabled user-by-user within O365 by your O365 admin.\u00a0 Once your account has been enabled for mutlifactor authentication the …\" \/>\n<meta property=\"og:url\" content=\"https:\/\/regroove.ca\/archive\/2014\/05\/07\/o365-multifactor-authentication-in-depthpart-2how-it-works-inside-o365\/\" \/>\n<meta property=\"og:site_name\" content=\"Archive\" \/>\n<meta property=\"article:published_time\" content=\"2014-05-07T18:46:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-02-24T21:48:28+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/regroove.ca\/archive\/wp-content\/uploads\/sites\/6\/2015\/04\/043015_1744_SharePointa2.png\" \/>\n\t<meta property=\"og:image:width\" content=\"801\" \/>\n\t<meta property=\"og:image:height\" content=\"451\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Sean Wallbridge\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Sean Wallbridge\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/regroove.ca\/archive\/2014\/05\/07\/o365-multifactor-authentication-in-depthpart-2how-it-works-inside-o365\/\",\"url\":\"https:\/\/regroove.ca\/archive\/2014\/05\/07\/o365-multifactor-authentication-in-depthpart-2how-it-works-inside-o365\/\",\"name\":\"O365 MultiFactor Authentication in depth\u2013Part 2\u2013how it works inside O365 - Archive\",\"isPartOf\":{\"@id\":\"https:\/\/regroove.ca\/archive\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/regroove.ca\/archive\/2014\/05\/07\/o365-multifactor-authentication-in-depthpart-2how-it-works-inside-o365\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/regroove.ca\/archive\/2014\/05\/07\/o365-multifactor-authentication-in-depthpart-2how-it-works-inside-o365\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/regroove.ca\/archive\/wp-content\/uploads\/sites\/6\/2015\/04\/043015_1744_SharePointa2.png\",\"datePublished\":\"2014-05-07T18:46:00+00:00\",\"dateModified\":\"2023-02-24T21:48:28+00:00\",\"author\":{\"@id\":\"https:\/\/regroove.ca\/archive\/#\/schema\/person\/74e1c0def190f181c1394c2b6d883e77\"},\"breadcrumb\":{\"@id\":\"https:\/\/regroove.ca\/archive\/2014\/05\/07\/o365-multifactor-authentication-in-depthpart-2how-it-works-inside-o365\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/regroove.ca\/archive\/2014\/05\/07\/o365-multifactor-authentication-in-depthpart-2how-it-works-inside-o365\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/regroove.ca\/archive\/2014\/05\/07\/o365-multifactor-authentication-in-depthpart-2how-it-works-inside-o365\/#primaryimage\",\"url\":\"https:\/\/regroove.ca\/archive\/wp-content\/uploads\/sites\/6\/2015\/04\/043015_1744_SharePointa2.png\",\"contentUrl\":\"https:\/\/regroove.ca\/archive\/wp-content\/uploads\/sites\/6\/2015\/04\/043015_1744_SharePointa2.png\",\"width\":801,\"height\":451},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/regroove.ca\/archive\/2014\/05\/07\/o365-multifactor-authentication-in-depthpart-2how-it-works-inside-o365\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Blog Archive\",\"item\":\"https:\/\/regroove.ca\/archive\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"O365 MultiFactor Authentication in depth\u2013Part 2\u2013how it works inside O365\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/regroove.ca\/archive\/#website\",\"url\":\"https:\/\/regroove.ca\/archive\/\",\"name\":\"Archive\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/regroove.ca\/archive\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/regroove.ca\/archive\/#\/schema\/person\/74e1c0def190f181c1394c2b6d883e77\",\"name\":\"Sean Wallbridge\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/regroove.ca\/archive\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/adf8cea6291c39d166616f2148d919a6?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/adf8cea6291c39d166616f2148d919a6?s=96&d=mm&r=g\",\"caption\":\"Sean Wallbridge\"},\"url\":\"https:\/\/regroove.ca\/archive\/author\/swallbridge\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"O365 MultiFactor Authentication in depth\u2013Part 2\u2013how it works inside O365 - Archive","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/regroove.ca\/archive\/2014\/05\/07\/o365-multifactor-authentication-in-depthpart-2how-it-works-inside-o365\/","og_locale":"en_US","og_type":"article","og_title":"O365 MultiFactor Authentication in depth\u2013Part 2\u2013how it works inside O365 - Archive","og_description":"In my last post I outlined the basics of multifactor authentication and also discussed the method that Office365 uses to implement it.\u00a0 In this post I will describe how it actually works. O365 multifactor authentication can be enabled user-by-user within O365 by your O365 admin.\u00a0 Once your account has been enabled for mutlifactor authentication the …","og_url":"https:\/\/regroove.ca\/archive\/2014\/05\/07\/o365-multifactor-authentication-in-depthpart-2how-it-works-inside-o365\/","og_site_name":"Archive","article_published_time":"2014-05-07T18:46:00+00:00","article_modified_time":"2023-02-24T21:48:28+00:00","og_image":[{"width":801,"height":451,"url":"https:\/\/regroove.ca\/archive\/wp-content\/uploads\/sites\/6\/2015\/04\/043015_1744_SharePointa2.png","type":"image\/png"}],"author":"Sean Wallbridge","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Sean Wallbridge","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/regroove.ca\/archive\/2014\/05\/07\/o365-multifactor-authentication-in-depthpart-2how-it-works-inside-o365\/","url":"https:\/\/regroove.ca\/archive\/2014\/05\/07\/o365-multifactor-authentication-in-depthpart-2how-it-works-inside-o365\/","name":"O365 MultiFactor Authentication in depth\u2013Part 2\u2013how it works inside O365 - Archive","isPartOf":{"@id":"https:\/\/regroove.ca\/archive\/#website"},"primaryImageOfPage":{"@id":"https:\/\/regroove.ca\/archive\/2014\/05\/07\/o365-multifactor-authentication-in-depthpart-2how-it-works-inside-o365\/#primaryimage"},"image":{"@id":"https:\/\/regroove.ca\/archive\/2014\/05\/07\/o365-multifactor-authentication-in-depthpart-2how-it-works-inside-o365\/#primaryimage"},"thumbnailUrl":"https:\/\/regroove.ca\/archive\/wp-content\/uploads\/sites\/6\/2015\/04\/043015_1744_SharePointa2.png","datePublished":"2014-05-07T18:46:00+00:00","dateModified":"2023-02-24T21:48:28+00:00","author":{"@id":"https:\/\/regroove.ca\/archive\/#\/schema\/person\/74e1c0def190f181c1394c2b6d883e77"},"breadcrumb":{"@id":"https:\/\/regroove.ca\/archive\/2014\/05\/07\/o365-multifactor-authentication-in-depthpart-2how-it-works-inside-o365\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/regroove.ca\/archive\/2014\/05\/07\/o365-multifactor-authentication-in-depthpart-2how-it-works-inside-o365\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/regroove.ca\/archive\/2014\/05\/07\/o365-multifactor-authentication-in-depthpart-2how-it-works-inside-o365\/#primaryimage","url":"https:\/\/regroove.ca\/archive\/wp-content\/uploads\/sites\/6\/2015\/04\/043015_1744_SharePointa2.png","contentUrl":"https:\/\/regroove.ca\/archive\/wp-content\/uploads\/sites\/6\/2015\/04\/043015_1744_SharePointa2.png","width":801,"height":451},{"@type":"BreadcrumbList","@id":"https:\/\/regroove.ca\/archive\/2014\/05\/07\/o365-multifactor-authentication-in-depthpart-2how-it-works-inside-o365\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Blog Archive","item":"https:\/\/regroove.ca\/archive\/"},{"@type":"ListItem","position":2,"name":"O365 MultiFactor Authentication in depth\u2013Part 2\u2013how it works inside O365"}]},{"@type":"WebSite","@id":"https:\/\/regroove.ca\/archive\/#website","url":"https:\/\/regroove.ca\/archive\/","name":"Archive","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/regroove.ca\/archive\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/regroove.ca\/archive\/#\/schema\/person\/74e1c0def190f181c1394c2b6d883e77","name":"Sean Wallbridge","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/regroove.ca\/archive\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/adf8cea6291c39d166616f2148d919a6?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/adf8cea6291c39d166616f2148d919a6?s=96&d=mm&r=g","caption":"Sean Wallbridge"},"url":"https:\/\/regroove.ca\/archive\/author\/swallbridge\/"}]}},"_links":{"self":[{"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/posts\/2429"}],"collection":[{"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/users\/10"}],"replies":[{"embeddable":true,"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/comments?post=2429"}],"version-history":[{"count":1,"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/posts\/2429\/revisions"}],"predecessor-version":[{"id":2912,"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/posts\/2429\/revisions\/2912"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/media\/1496"}],"wp:attachment":[{"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/media?parent=2429"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/categories?post=2429"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/tags?post=2429"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}