KI 0780 Two-factor authentication at UiB

2020-09-10 (updated 2026-01-27)

Why we use two-factor authentication and what it involves.

Two-factor authentication (often shortened or referred to as MFA, 2FA, two-step verification, etc.) is an extra security step when signing in. It works by requiring you, in addition to entering the correct username and password, to also confirm your identity using an additional factor — for example by approving the sign-in via an app or SMS.

At UiB, we primarily require users to use the Microsoft Authenticator app for two-factor authentication, but if necessary, other methods can also be used.

Guides:

KI 3114 Setting up two-factor authentication
KI 3116 Using two-factor authentication when signing in
KI 1381 Microsoft Authenticator (two-factor) on a new mobile device

How does it work?

Microsoft Authenticator works so that when you have entered the correct username and password while signing in to your UiB account, you will receive a notification from the app on your mobile phone. You then need to open the app and confirm that it is you who is signing in, and enter the two-digit number on your phone that is shown on the sign-in screen — once this is done, you will be signed in.

Why is two-factor authentication used?

Two-factor authentication significantly reduces the risk of unauthorized access. This means that even if someone finds your password, they will not be able to access your account without having access to your mobile phone.

Do I have to use two-factor authentication?

Yes, not having two-factor authentication on your account poses a significant security risk. If it is not set up on your account, you will not be able to sign in until you configure it.

Note that when using Microsoft Authenticator during sign-in, you are given the option to choose not to be asked again for 30 days. If you enable this, you will not need to use two-factor authentication on that device and browser for 30 days at a time.