Multi-Factor Authentication (MFA)

Multi-factor authentication (MFA) protects your data by adding a layer of security, making it difficult for unauthorized users to access your online accounts. In order to better protect your information and email, MFA is required when accessing student, faculty, and staff email accounts, MyHR, Pathway, and other webpages protected by Microsoft modern authentication (MA).

Available Authentication Methods

  • Microsoft Authenticator mobile app (recommended) – an app on your mobile device that allows you to approve a sign in with the touch of a button or from a passcode available in the app.
  • Alternate phone number– a cell phone or home phone that you have access to. Codes are sent via text or call.
  • Office phone – this value is populated by information entered in myHR. Codes are sent via call.

Additional information regarding Microsoft 365 and MFA can be found on the University of Missouri's M365/MFA Implementation FAQ page.

When setting up this authentication method, you will need your computer and mobile device. You cannot set up the app using just your phone.

  1. Sign in to Microsoft 365 with your UMKC and password.
  2. If this is your first time signing in, you will be prompted for more information. Click Next.
  3. You will be prompted to download the Microsoft Authenticator app on your mobile device. A download link for sending the app to your device is provided if needed.

    NOTE: If you do not want to use the Microsoft Authenticator app, choose I want to set up a different method (See directions below Setting up MFA with a phone call or text message)
  4. Once you have the app installed on your mobile device, choose Next on your computer.
  5. Scan the QR code on your computer with the app on your mobile device. Click Next on your computer.
  6. You will be prompted to respond to a notification you receive on your mobile device to Approve sign in.
  7. We highly encourage you to add a second authentication method. By clicking, I want to set up a different method, you can add your phone as a backup method for MFA. If you don't have a second method to add, click Next to complete the registration process.

  1. Sign in to Microsoft 365 with your UMKC and password.
  2. Click Add method.
  3. Select Phone from the drop down and click Add.
  4. Enter your phone number and choose if you would like to receive a text or phone call to receive the code. Click Next.
  5. A test text message or phone call will be sent to your device. Enter the code you receive. Click Next.
  6. You will receive a message confirming successful registration. Click Done.

If your phone is lost or replaced or you need to update your MFA methods for any reason, you can do so by signing into your Microsoft 365 security info page. From this page, you can change your default sign-in method, delete or change existing methods, or require sign in from all active devices.

You will be prompted to confirm your security settings annually. If everything is correct, you can simply acknowledge and click Done. This is a great time to add any additional 2nd authentication factors (such as an SMS or the Microsoft Authenticator App) to ensure you are always able to login to University resources.


Your authentication will be valid for up to 90 days.

You will be prompted to re-authenticate when you:

  • Sign in and out again in Office clients.
  • Don't log in for 14 days on that device.
  • Change your password.
  • Swap between Microsoft 365 accounts.


  • Most employees are eligible for a Microsoft 365 A5 license and will need to use MFA every 30 days per device by choosing don't ask again for 30 days at the log in screen.
  • Non-eligible employees will need to authenticate on every log in. Contact the Technology Support Center for more information on your Microsoft 365 license.

Retirees and Alumni will need to authenticate on every log in.