Approved MFA Methods and Setup Instructions

SMS Text Message (Easiest Method)

SMS Text Message sends a text message to your phone with a 6-digit verification code.

If you've decided to use SMS Text Message for your MFA method, we would strongly recommend having your phone on hand before the setup process.

This way, when you're asked to provide a verification code during enrollment, you'll have your phone on hand to receive the text message with the code.

Steps to set up SMS Text Message as an MFA Method:

1. Go to https://aka.ms/mfasetup to initiate the MFA enrollment.
2. Login with your Single sign-on username and password (e.g., LastName_FirstName@rsccd.edu, @sccollege.edu or @sac.edu).
3. On the More Information Required screen, select Next.
4. On the Keep your account secure screen, select "I want to set up a different method". 
5. Select Phone call, then Confirm.
6. Enter your phone number and select "Text me a code" or "Call Me" to receive a text message or phone call to authenticate.

Microsoft Authenticator

Microsoft Authenticator app allows for Push Notifications to be sent to your phone to verify sign-in requests.  You'll be prompted to enter a two-digit code in the app to verify your login.

If you've decided to use Microsoft Authenticator, we would strongly recommend that you install the Microsoft Authenticator app on your phone first.

Download the Microsoft Authenticator App

Once you have the app installed and notifications enabled, you can initiate voluntary enrollment for Multi-Factor Authentication (MFA)  at this link, then follow the prompts for setup:  https://aka.ms/mfasetup

For step-by-step instructions with instructions, please refer to the Microsoft Authenticator section of our guides below:

• Multi-Factor Authentication Guide for Single Sign-on (SSO)
• Multi-Factor Authentication (MFA) for Single Sign-on (SSO) - Quick Guide
  

Google Authenticator

Google Authenticator app is an alternative to Microsoft Authenticator.  It generates a 6-digit code used to verify your login instead of a push notification.

If you've decided to use Google Authenticator, we would strongly recommend installing the app on your mobile device now from the App Store or Play Store.

Once you have the app installed, you can initiate voluntary enrollment for Multi-Factor Authentication (MFA)  at this link:  https://aka.ms/mfasetup

When prompted on the "Keep your account secure" page:

1. Select "I want to use a different authenticator app"
2. Select "Next"
   
3. When presented with a QR code, open the Google Authenticator app and scan the QR code.
   

For step-by-step instructions, please refer to our guides below:

• Multi-Factor Authentication (MFA) for Single Sign-on (SSO) - Quick Guide
  
• Multi-Factor Authentication Guide for Single Sign-on (SSO)

Phone Call

Phone call allows you to use your mobile phone or office phone to receive a verification request through your phone.  With this MFA method, you'll receive a phone call from Microsoft, and be prompted to press the # (pound) key on your phone's dial pad to authenticate your login.

If you've decided to use phone calls for your MFA method, we would strongly recommend having your phone on hand before the setup process.

This way, when you're asked to provide a verification code during the set-up process, you'll have your phone on hand to receive the code via phone call.

Once you have your phone on hand, you can initiate voluntary enrollment for MFA at this link:  https://aka.ms/mfasetup

When prompted on the "Keep your account secure" page:

1. Select "I want to set up a different method"
2. Select "Phone"
3. Enter your phone number and select "Call Me"

For step-by-step instructions, please refer to our guides below:

• Multi-Factor Authentication (MFA) for Single Sign-on (SSO) - Quick Guide
  
• Multi-Factor Authentication Guide for Single Sign-on (SSO)

Hardware Token

Hardware token uses a One-Time Password (OTP) generated by a hardware token device, provided by ITS Help Desk, consisting of a 6-digit code used to verify your login.

If you've decided on using a Hardware Token as your MFA method, please contact ITS Help Desk so we can arrange to have one allocated and distributed for you. 

Please allow a few business days for us to provide you a hardware token, as we need to configure the device first, and then have an ITS technician coordinate a time and place for you to pick up the hardware token device.

Troubleshooting MFA Issues

New Phone, Lost Phone, Stolen Device

If you lose or replace your device that has Microsoft Authenticator installed, or you are using a new phone number,  you'll need to have a backup MFA method enabled to access your account, or contact the ITS Help Desk so we can remove the registration from the old device so you can register the new device.

Set up backup MFA method

See the section on how Managing MFA Methods.

Contact the ITS Help Desk for assistance

Contact the ITS Help Desk for help if you can't manage your authentication methods.  We can help you re-enroll into MFA with your new device.

Managing MFA Methods

Access the My Sign-Ins / Security Info page

• From a web browser:  Go to https://aka.ms/mfasetup
• From the Microsoft Authenticator app:   Open your Microsoft Authenticator app > Select the entry for Rancho Santiago > Select Update Security info.

Both methods will take you to the "My Sign-ins / Security Info" page for your account, where you can add, remove, or edit an existing authentication method. such as SMS Text Message or Phone Call.   This includes removing, editing, or adding new MFA methods, such as in the event of replacing your mobile device or phone number.

On the Security Info page, we strongly suggest setting up a secondary Authentication method using the “Add sign-in” button.

Please note that you'll be required to authenticate using MFA to access https://aka.ms/mfasetup.  If you only had one MFA method available, and it's no longer working, you won't be able to log in here.

If you're unable to manage your authentication methods, please contact the ITS Help Desk for assistance with MFA.  We can help you remove, edit, or add another MFA method if you lose access to or replace your original device.

Remove and re-add Microsoft Authenticator as an MFA method

If you're using the Microsoft Authenticator app from a new phone, it may no longer work from the new phone.  To fix this, please apply the following steps.

Steps to remove/re-add Microsoft Authenticator as an MFA method when using a new device:

1. Access the "My sign-ins" page to manage your MFA methods.
1. From a web browser:  Go to https://aka.ms/mfasetup
2. From the Microsoft Authenticator app:   Open your Microsoft Authenticator app > Select the entry for Rancho Santiago > Select Update Security info.
2. Remove the existing Microsoft Authenticator method listed there.
3. Select Add > Authenticator app to go through the MFA enrollment process again with the Microsoft Authenticator app on your new phone, as if you're setting it up for the first time.

Remove old phone number and add a new phone number as an MFA method

If you received a new phone number and can no longer authenticate using SMS Text Message or phone call, you may need to remove the old phone number and add the new phone number as an MFA method.    To fix this, please apply the following steps.

1. Access the "My sign-ins" page to manage your MFA methods.
1. From a web browser:  Go to https://aka.ms/mfasetup
2. From the Microsoft Authenticator app:   Open your Microsoft Authenticator app > Select the entry for Rancho Santiago > Select Update Security info.
2. Login to https://aka.ms/mfasetup to manage your authentication methods.
3. Remove the existing phone number listed there. 
4. Select Add > Phone number to go through the MFA enrollment process again with the new phone number.
   

If you're unable to login to manage your authentication methods, please contact the ITS Help Desk for assistance with MFA.  We can help you remove, edit, or add another MFA method if you lose access to or replace your original device.

How to receive assistance with MFA