myCIA Help

Multi-Factor Authentication and CIA Email Account

Updated on

What is multi-factor authentication?

"MFA is quite simple, and organizations are focusing more than ever on creating a smooth user experience. In fact, you probably already use it in some form. For example, you've used MFA if youve:

  • swiped your bank card at the ATM and then entered your PIN (personal ID number).
  • logged into a website that sent a numeric code to your phone, which you then entered to gain access to your account.

MFA, sometimes referred to as two-factor authentication or 2FA, is a security enhancement that allows you to present two pieces of evidence  your credentials  when logging in to an account. Your credentials fall into any of these three categories: something you know (like a password or PIN), something you have (like a smart card), or something you are (like your fingerprint). Your credentials must come from two different categories to enhance security  so entering two different passwords would not be considered multi-factor."

Excerpt from https://www.nist.gov/itl/tig/back-basics-multi-factor-authentication

Setting up your MFA

Set up MFA (Multi-Factor Authentication) for your CIA account

  1. On a computer go to  https://aka.ms/mfasetup
  2. Log in with your CIA credentials ([email protected] and password)
  3. A message will appear indicating that more information is required
  4. Select 'Next'

Get Authenticator - Required

MFA for your CIA account requires an Authenticator App. You can use whichever app you prefer.

  1. Download Microsoft Authenticator
  2. Continue after installing Microsoft Authenticator app
  3. Continue with your preferred app
  4. Choose a different method
My Sign-Ins | Register | Microsoft.com
1. Downloading the Microsoft Authenticator

If you don't have the microsoft Authenticator installed then using the link launches their website with instructions.

Microsoft Mobile Phone Authenticator App | Microsoft Security
2. Continue setup with Microsoft Authenticator App
3. Continue setup with preferred Authenticator App

These are the same steps if you choose Authenticator App as a "Different Method"

4. Use a different Authenticator App or Phone Method

Want to use a different Authentication Method?

  • If you change your mind any time before completing the authentication method setup; Just select "I want to set up a different method"
  • You can also add or change methods after you set up the first method
  1. Select "I want to set up a different method"
  2. Select a method from the drop down
  3. If you select Authenticator App- See instruction 3. Continue setup with preferred Authenticator App
  4. Phone- (continue to next step)
My Sign-Ins | Register | Microsoft.com
  1. Choose your country code
  2. Enter your phone number
  3. Receive a code will send a unique code via text
  4. Call me will call your phone and require you to press a specific number or symbol on your phone to acknowledge the request for access to your account
  5. Select 'Next' when you are ready to proceed

If you choose Call me you will receive a phone call. Follow the instructions provided on the call.

Update your password

First time logins are required to update their password.

If the Change password window appears:

  1. Enter 'Current password'
  2. Enter 'New password'
  3. Confirm 'New password'
  4. Select 'Sign in'
  5. Successful set up and password change will take you to https://mysignins.microsoft.com/

Logging in with MFA

Website Login with MFA

The Multi-factor authentication experience on mobile devices will appear differently. However the process is the same.

The following example uses Outlook mail with desktop browser. The process is the same for any account requiring MFA

Multi-factor authentication is required each time you log in. The frequency will depend on the service/platform you are accessing.

  1. In a browser open the web site (https://outlook.office365.com/cia.edu)
  2. Enter your email address or 'Pick an account'
  3. Enter your password
  4. Select 'Sign in'
  1. Open your preferred Authentication App
  2. Enter the time sensitive code from your app
  3. Select 'Verify'
Sign in to your account
Desktop App Login with MFA

After setting up the multi-factor authentication you will need to re-authenticate for programs that have logged into before setting up MFA.

This example is for Outlook on a Mac. You will notice that the windows appear similar to those in Logging in with Multi-Factor Authentication

The following example uses the Outlook application on a Mac . The process is the same on any desktop (Mac or PC) for any account requiring MFA

Open the Application (Microsoft Outlook)

You will be prompted to enter your password

The code will expire. If the code received does not work choose Sign in another way and request another code by selecting your preferred method.

Mobile Login with MFA

Logging into websites and applications with a mobile device is essentially the same as desktop

Differences include:

  • Same device requires app switching to retrieve the time sensitive MFA code
  • Some apps require additional notification permissions to trigger MFA requests at login
  • The Outlook App can be used as a Microsoft Authentication App after set up
  • Authentication for mobile and desktop applications will  last much longer than authentication for websites

What's Next?

Read about setting up Outlook on a Mobile Device in "How do I set up my email on my..."

Add or remove Authentication methods

Add a sign-in method

Choose a method

Select 'Add'

Follow steps at the beginning of this article section 3. Continue setup with preferred Authenticator App

My Sign-Ins | Security Info | Microsoft.com
  1. Log into mysignins.microsoft.com
  2. Navigate to Security info
  3. Add or Delete a sign-in method
My Sign-Ins | Security Info | Microsoft.com
Previous Article What is OneLogin
Next Article Change my employee password using a CIA-owned computer

Working at CIA

Payroll 0
Account Management 8
CIA WiFi 4
Employee Benefits 1

Other Resources

 Print Article
Still Need Help? Contact Us