Multi-factor authentication means you will be asked to verify your Oxford Single Sign-On (SSO) account using a second factor, such as a text message, an app on your phone, or a phone call. This will help protect you and the University from cyber attacks.
The implementation of multi-factor authentication (MFA) for everyone with an SSO account, including staff and students, started in January 2021 and will continue in daily batches, alphabetically by surname, until March 2021.
Actions to take now
We need your help to ensure a smooth deployment of MFA so we are encouraging everyone to prepare for MFA ahead of their deployment date.
1. Check your MFA deployment date
If you haven't already had MFA deployed on your account or received a countdown email, find out your deployment date on the MFA timetable (requires SSO login). MFA will be applied to your SSO account by 6.00am on your deployment date. If you have any existing commitments that day, especially students with online exams, you may want to request that MFA is enabled early on your SSO account, so you don't lose access to your account at an inconvenient moment.
2. Set up two MFA authentication methods
We recommend that you set up at least two authentication methods in advance of your MFA date, ideally choosing methods that don't both rely on a single device, for example you might choose the Microsoft Authenticator app on your mobile and an automated phone call to a landline.
You can verify your account using any of the following methods:
3. Check your emails and the MFA webpages
You will receive a number of countdown emails ahead of your MFA deployment date. Please read these emails as they contain important information and instructions for setting up MFA on your account. There are also comprehensive instructions on the How to prepare for MFA page and the Help and guidance pages.
If you have any questions regarding MFA, please speak to your local IT support in the first instance.
If you have any questions about this project please contact email@example.com.
Help us 'double-lock' our systems and protect personal and University data.