Using Multi-Factor Authentication (MFA) for UTokyo Accounts
Table of Contents
Introduction
Multi-factor authentication is available for UTokyo Accounts to improve the security of ICT systems in the University of Tokyo.
Multi-factor authentication (MFA) is a security process where users are asked to enter passwords as well as verify their identity via SMS or authentication apps when signing in to their accounts. MFA can make your account more secure by reducing the risk of unauthorized sign-ins even if your password has been compromised.
Users with UTokyo Accounts can enable MFA by completing the initial setups for their account individually. MFA setup is not mandatory at this time, and you can continue to use your UTokyo Account without MFA. However, it is strongly recommended that you set up MFA for security reasons. Note that MFA must be enabled when using UTokyo VPN or UTokyo Slack, and that they are unavailable for UTokyo Accounts without MFA.
We ask the UTokyo Account users to enable MFA because maintaining the security of UTokyo Account is crucial to protect not only the information of individual users but also the information assets of the university.
MFA Initial Setup Procedure
Please refer to the following page for the initial setup procedure (things to do when you get started).
Initial Setup Procedures for Multi-Factor Authentication for UTokyo Accounts
If You Cannot Verify Your Identity and Failed to Sign In Due to Phone Malfunction or Model Change
Please refer to the following page if you lose access to every verification method (due to malfunctions, model changes, etc.) and are unable to sign in to your UTokyo Account.
When you change your phone model, please note that you can avoid being locked out from your UTokyo Account by registering your new phone for MFA (see “Changing the Verification Method of Multi-Factor Authentication for UTokyo Accounts” for details) while your old phone is still available. Please make sure to complete this procedure in advance.
Others
Other descriptions of MFA are separated into the following topics. Please visit the page of your interest
- Changing MFA Settings: How to change your verification method (e.g., authentication apps, phone number)
- Adding Verification Methods
- Changing the Default Sign-in Method: How to change the default sign-in method, i.e., the primary verification method when you sign in.
- Editing Verification Methods
- Deleting Verification Methods
- Terminate MFA Use: How to disable MFA and reverse your UTokyo Account settings to allow signing in with only a password. We strongly recommend that you continue to use MFA for security reasons, but if you need to terminate MFA use for unavoidable circumstances, you can apply for termination here.
- Others
- Hardware Tokens: For faculty members who are unable to register any verification methods, such as those who do not have smartphones, we offer devices called “hardware tokens” as an alternative.
- Use the 6-digit Code in Microsoft Authenticator to Sign In: If you registered “Microsoft Authenticator” app as the verification method, typically you will receive a notification for verification from the app when you sign in. However, the app offers another method for verification.
- Irregular Behaviors During Verification
- About “we require additional information to verify your account” Error: Please follow the instructions in this page if you see the “we require additional information to verify your account” error in the sign-in page.