Multi-Factor Authentication FAQ

If I am working at the College’s campus where I am usually based, will I be required to provide second method of verification when accessing Office 365 applications, such as, emails, SharePoint etc.?

You will not be asked to go through second method of verification when connected to the College’s IT network at Hawkshead, Camden or Bolton’s Park Farm sites.

How will MFA affect my computer access when I work between Camden, Hawkshead and Bolton’s Park Farm?

You will not be asked to go through second method of verification when connected to the College’s IT network at Hawkshead, Camden or Bolton’s Park Farm sites.

How will MFA affect my computer access when I access emails offsite whether on my smartphone or laptop/PC/Mac?

Anytime you connect to a different network away from the College, you will be asked to validate your identity through MFA

How long will the system remember my settings before asking me to verify my identity again through MFA?

When you authenticate using MFA on a non-RVC network, the system is set to ask to re-enter a pin or ask for verification in 14 days.

Is there any anticipated impact to accessing and saving to RVC drives (using VPN as usual)?

There is no impact as MFA provides the extra security and safeguards access to all Office 365 applications when away from the College

Will I still need to authenticate using MFA if I am off site using VPN?

You will still be required to authenticate to Office 365 applications using MFA even when using VPN when off site.

Are there any different considerations when using my phone on 4G to respond to emails from offsite meetings?

4G and non-RVC wireless networks would work the same when using MFA service for second verification

How comes some RVC applications that I access remotely do not prompt me for MFA?

At present, not all RVC applications are configured for MFA. In the future, we aim to ensure that all our critical applications that are accessed remotely will be configured to prompt for MFA.

Can my account still be phished or hacked even though it is MFA enabled?

Yes. There is no completely fool proof technology that can guarantee to keep hackers out. User vigilance is paramount at all times. If you receive an MFA verification request through the Microsoft Authenticator app or code in a text message that you have not requested, then ignore the approval request or the text message (and report the incident to IT Helpdesk helpdesk@rvc.ac.uk). In such a scenario, an unauthorised entity is trying to gain access to your Office 365 account.

What happens when I change/replace the mobile phone that I use for MFA?

If you need to change the mobile phone you are using for MFA, please visit https://portal.office.com/account/#security and follow the link to update your phone number.

I'm having problems with the office desk phone verification method

To use this verification method, your office desk phone must be entered in your Office 365 settings. To confirm this, click Settings > Office 365 Settings > Me, and see if the information is displayed in the Phone field.

Your phone number must have the country or region code prefixed in the following format: +441707666333

Top of page