Excellent video summarizing the steps explained below: https://www.youtube.com/watch?v=Q8OzabuNwHI
Once IT administrator activate 2FA (2-factor authentication) on your account, you will be asked to complete additional step after you next login.
If you want to complete those steps immediately, please log off and log on again on https://portal.office.com/.
After password entry, you will be presented this message:
Click on the Next button to proceed.
You will be redirected to a Windows Azure page as shown below.
If you like to receive verification code by SMS, make sure your phone number is correct and select "Send me a code by text message" option. Then click on the Next button.
Note: This method requires you to be able to read SMS anytime, especially when traveling abroad for business. If your SMS roaming is not guaranteed, please choose Mobile app verification code method as shown below.
If you prefer to use a mobile application to get your verification code please see below. This method will work even if your phone is offline (no Internet access), similarly to the token device which is used by some banks.
Click on "Set up" button and follow the step to install and configure the mobile application on your smartphone.
Mobile application can be found here:
- Android: https://play.google.com/store/apps/details?id=com.azure.authenticator&hl=en
- iOS/Apple: https://apps.apple.com/us/app/microsoft-authenticator/id983156458
After clicking on the Next button, you will be asked to validate the configuration by entering a verification code. Below screenshots show the process for mobile application method but SMS method is similar.
Step 3 will asked your mobile phone number so you can use another method in case you loose mobile application access.
Step 4 can be disregarded for now.
2FA is now properly configured on your account.
When connecting to your account, after entering your password, you will now be asked to enter a verification code:
If you are using a trust device, do not forget to check the "Don't ask again for 60 days" checkbox to avoid having to follow the process again.
Check your SMS or open the Authenticator mobile application to get your code:
In the Authenticator app, code is changed every 30 seconds.