Go to main content Go to search
Page updated 17.5.2023

Multi-Factor Authentication 

Multi-factor authentication will be enabled for all Turku UAS user IDs. This will happen automatically after a pre-defined period.

What is multi-factor authentication or MFA?

Multi-factor authentication (MFA) refers to an additional authentication method that utilizes your phone when you log into online services. In addition to the username and password, an SMS containing an authentication code will be sent to your phone, or an approval request to a separate authentication application.  

Why is MFA needed?

Multi-factor authentication enables Turku UAS to better secure user accounts. MFA protects you and reduces data breaches. Even if criminals gain access to your username and password, MFA will ask for approval when a criminal attempts to log into your account. MFA in place, it is virtually impossible for a criminal to access your account without also having access to your phone.

Services covered by MFA after activation

Multi-factor authentication will be switched on in Turku UAS’ Microsoft 365 cloud service. After the deadline, you will not be able to log into the services of Turku UAS that use email address as the username without additional authentication. These include email and Teams. Not all mobile email applications support MFA. We recommend using the Outlook application to manage your email and calendar.

Act now and activate MFA!

1. Install Microsoft Authenticator on ypur phone and select Scan QR code. 2. Connect your Turku University of Applied Sciences account to the app with a QR code at https://aka.ms/mafasetup. 3. Enable SMS authentication in case you change your phone.

How do I set up MFA?

You will need a personal mobile phone to receive SMS messages and use the authentication app.

Note! Read the instructions carefully before starting the installation. Step 1 is done on the phone and steps 2 and 3 on the computer.

Phase 1: Install the Microsoft Authenticator app on your phone

  1. Download and install the Microsoft Authenticator app on your phone from the app store.
  2. Open the Microsoft Authenticator app after downloading. 
  3. Do not sign into the Authenticator app after the installation. Add your account by using a QR code.
  4. The first time you log in, allow the collection of anonymised data when prompted to do so.
  5. If prompted, select Allow to allow notifications.
  6. If the app offers to scan a QR code at this point, please do so. Otherwise, select Work or school account, then select Scan QR code.
  7. Allow the authenticator app access to your camera to take a picture of the QR code in the next phase. 
  8. The app waits for a QR code to add your Turku UAS account to the Microsoft Authenticator app on your phone.
  9. Put your phone aside for a moment and go to phase 2. 

Note! If the authentication application indicates that it is locked and asks you to enter the lock code, then use the same code that you use to unlock your phone screen/display.

Phase 2: Add your Turku UAS account to the Microsoft Authenticator app

  1. With your computer go to the web address  https://aka.ms/mfasetup
  2. Log in with your Turku UAS email address and password.If you can't login at this point, please contact Service Desk: servicedesk(at)turkuamk.fi .
  3. When your web browser asks whether the login will be saved, you can select No.
  4. The browser displays a notification about the definition of additional details, select Next.
  5. The browser displays information about the use of the Microsoft Authenticator app. 
  6. Click Next, and a QR code appears on screen.  
  7. Take your phone and scan the provided QR code with the QR code reader of the Microsoft Authenticator app.  If the authenticator application asks for a lock code, this is the lock code of the phone display.
  8. After the Microsoft Authenticator app has scanned the QR code, click Next on the browser window. 
  9. The app will send a test notification to your phone, which you must accept by entering a two-digit code.
  10. In your browser window, click Next. 
  11. Then click Done. 
  12. Your Turku UAS account has now been added to the Microsoft Authenticator app on your phone. 
  13. Next, enable SMS authentication as a secondary authentication method. Leave the Security info page open in your browser and go to phase 3.

Phase 3: Set up SMS-based authentication method

  1. In your computer's browser, open https://aka.ms/mfasetup if you have already closed the browser.
  2. Log in with your Turku UAS email address and password.
  3. If you have a smartphone and have already installed Authenticator, click + Add method -button on Security info -page and skip to step 5.
  4. If you do not have a smartphone and have not been able to install Authenticator, click the I want to set up a different method -link at the bottom of that box.
  5. In the drop-down menu, select Phone and click Confirm.
  6. In the drop-down menu, select country code and type the rest of your phone number in the provided field.
  7. Click Next.
  8. You will receive an SMS on your phone containing a numeric code of 6-digits. Enter this code in the field displayed in your web browser.
  9. In your browser, click Done.
  10. Your Turku UAS account has now been connected to your phone number.


Two different authentication methods (Microsoft Authenticator mobile app and SMS authentication as a fallback) allow for multi-factor sign-in in case the primary authentication method is not available for some reason or the phone changes.

Additional authentication is required every 90 days, after a password change, and when you sign in with new devices. MFA will not unnecessarily burden your logins.

Setting up SMS authentication

Follow these instructions if you do not have a smartphone or have not been able to install the Authenticator app.

  1. In your computer's browser, open https://aka.ms/mfasetup .
  2. Log in with your Turku UAS email address and password.
  3. When the page prompts you to install the Authenticator application, click the link that reads I want to set up a different method. This link is located at the bottom of the box.
  4. In the drop-down menu, select Phone and click Confirm.
  5. In the drop-down menu, select country code and type the rest of your phone number in the provided field.
  6. Click Next.
  7. You will receive an SMS on your phone containing a numeric code of 6-digits. Enter this code in the field displayed in your web browser.
  8. In your browser, click Done.
  9. Your Turku UAS account has now been connected to your phone number.

If you change your phone

If you change your phone, you can get MFA installed on your new phone as follows.

  1.  Download and install the Microsoft Authenticator app (published by Microsoft Corporation) on your phone from the app store.
  2. With your compute,r go to the following web address  https://aka.ms/mfasetup
  3. Log in with your Turku UAS email address and password.
  4. If you no longer have the old Authenticator app, select “I can't use my Microsoft Authenticator app right now” to use SMS authentication.
  5. If SMS authentication is not possible, please send email to Service Desk ( servicedesk(at)turkuamk.fi )
  6. On the Security info page, click on the + Add method button.
  7. Select the Authenticator app from the drop-down menu and click Add.
  8. The browser will now show you how to use the Microsoft Authenticator application.
  9. In the browser, click on the Next button to move forward to the point where the QR code appears.
  10. Now take your phone and use the QR code reader open in the Microsoft Authenticator app on your phone to read the QR code in your computer's browser. If your phone's authenticator app is locked, unlock the app with your phone's screen lock code.
  11. Once the QR code has been read by the Microsoft Authenticator phone app, you can click the Next button in your computer's browser.
  12. You will receive a request to approve the test authentication on your phone.
  13. Click the Next button in your computer browser to move forward.
  14. Click the Done button in your browser.
  15. Next, delete the old phone from the authentication service by clicking on the delete button. Please do not delete the old phone from the authentication service until SMS alerting is enabled.

If your phone number changes

  1. Log on to https://aka.ms/mfasetup
  2. Delete your old phone number from the list by selecting "Delete".
  3. Add a new phone number by selecting "Add method" > "Phone".

Alternative authenticator apps

If you already have an authenticator app (e.g. Google Authenticator), you can also use it with your account.
 

  1. Open the authenticator app and create a new account.
  2. Use your computer's browser to go to: https://aka.ms/mfasetup
  3. Log in using your Turku UAS email address and password.
  4. When the page prompts you to install Microsoft Authenticator app, click the link that mentions "I want to use a different authenticator app" at the bottom of the window.
  5. The browser will provide a QR code for linking the account. Now take your phone and scan the QR code with your phone's authenticator app.
  6. Enter the six-digit number displayed in the authenticator app into the field.
  7. Click “Done” in the browser.
  8. The account and app are now linked.
     

If you no longer can authenticate with MFA

If you no longer can use Authenticator, you can reset MFA via e-form. Such a situation may arise if you have changed your phone, or your credentials have been appropriated. Resetting will deactivate both MFA and SMS authentication. 

  1. Authenticate to the e-form via Suomi.fi.
  2. Add your personal (not Turku UAS) email address to the form and press Send. 
  3. You will receive an email about a successful reset. If the reset fails, Service Desk will handle it and contact you after the reset.
  4. Activate MFA again by following the instructions on this page.

Need help?

If the email application on your phone stops working

When MFA is introduced, old incompatible applications (e.g., email application) will no longer be able to connect to Turku UAS’ services. Use Microsoft Outlook (published by Microsoft Corporation), downloaded from the App Store, as the email application on your phone. In addition, authentication works with the newer email apps for Android and iOS.

If the Office application on your computer stops working

Microsoft Office installed on your own computer requires an MFA login. If the application stops working after activating MFA, please log out and log in once more. You can log out for instance in Teams or Word. Select the icon with your name on it in the top right corner. Then click Sign out, and sign in again.

Service Desk will help you

If you have problems, please contact Service Desk: servicedesk(at)turkuamk.fi. You can also visit EduCity IT Service Desk.

Need help?

Please contact Service Desk, servicedesk(at)turkuamk.fi

Visit EduCity Service Desk
Service hours Monday to Friday 10am-1pm.