Scribd
Upload
11 views7 pages

Multi-Factor Authentification Guide V1

The document outlines the process for accessing British Council applications using Multi-factor Authentication (MFA) via the EAM Identity Server, which requires users to verify their identity through a one-time password (OTP). Users can choose between receiving the OTP via email or using a third-party authenticator application. Additionally, it explains how to set up MFA, change the MFA channel, and utilize backup codes in case of access issues.

Uploaded by

doctorwho69
Copyright
© All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
11 views7 pages

Multi-Factor Authentification Guide V1

The document outlines the process for accessing British Council applications using Multi-factor Authentication (MFA) via the EAM Identity Server, which requires users to verify their identity through a one-time password (OTP). Users can choose between receiving the OTP via email or using a third-party authenticator application. Additionally, it explains how to set up MFA, change the MFA channel, and utilize backup codes in case of access issues.

Uploaded by

doctorwho69
Copyright
© All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd

How to access British Council Applications

using MFA (Multi-factor Authentication)

Introduction
MFA provides additional security when signing in. To access British Council applications we do
so using the EAM Identity Server. MFA means users need to perform additional identity
verification steps, this consists of being sent a one-time password (OTP) to their phone or
mailbox.

Application gives user option to choose MFA channel


Some applications will allow the user to choose the channel they use to access the application.
The options are as follows
• third party applications which generate OTP codes – this is usually done using a smart
phone and the OTP is sent to the phone
• an email - the OTP is sent to an email address which has been associated with the
application

1. The following screen will appear after sign in.


2. User must choose the authentication method they want to use.

[Link]
Set up with mailbox

1) If the user would like to receive an authentication code by email they click on the tick box
to confirm that the password for British Council account is not the same as for the
mailbox and they then click on Send authentication code.

2) The user will receive an email with the OTP (authentication code).
3) The user returns to the application login page and enters the code they received by email
into the Verification Code box. They then click on Verify.

Set up with Authenticator Application (usually using a smart phone)

1) To choose authenticator application click on Set up application.


2) They will need to follow the steps displayed.
a. Download a two-factor authenticator app like Microsoft Authenticator or Google
Authenticator.

b. Scan the QR cold or enter the key into the authenticator app you have downloaded.
c. A code will appear on the authenticator app which was downloaded. Enter this code
into the Verification Code box and then click on Verify.

When MFA has been set up on an Application


After signing into a British Council application you will automatically see a window which
requires you to enter an OTP Code. This code will be automatically sent on the channel which
was selected.

1) Enter the code into the Authentication Code box and then click on Verify.
2) You have the option of requesting the MFA to remember your details. That means you
will not need to create an authentication code for the next 14 days. If you would like to
activate this, you select the tick box beside Don’t ask again for 14 days.

Note: This will only if the user continues to use the same web browser. If they use a different
web browser, they will be required to enter an OTP code again.
How to change a preselected MFA channel

A user can request for the MFA configuration to be reset. This can be done can be done using
the EAM admin application.

When the MFA has been reset the user will be prompted to configure the MFA next time they
sign in.

Backup codes
When the MFA setup is finished backup OTP codes are generated. These can be used in
emergency, for example when authenticator application has been accidently deleted or there is
temporary loss of access to a mailbox.

These codes can be previewed after sign-in to any integrated application, on the page
[Link]

You might also like