New Microsoft MFA app security features - Number matching and location information

For several years, Saint Joseph’s has used Microsoft authentication services, including multi-factor authentication (MFA), to provide an additional layer of protection in accessing your account and to better protect your personal information and University information resources. Microsoft performs ongoing enhancements to their product offerings and, beginning Feb. 22, 2023, the Office of Information Technology introduced two new Microsoft features. Activating these features will make it virtually impossible for an attacker to access your account with only a compromised password.

Number matching:

When you log in to your account to access an MFA-protected service, you will be presented with a two-digit number while simultaneously receiving a “push” notification from the Microsoft Authenticator app on your mobile device. You will type the number displayed into the Authenticator app to complete the approval process. The entry of the matching number replaces pushing the approve button in the app.  

Location information:
When prompted to enter the two-digit number in the Authenticator app, you will be presented with a map showing the location where the authentication request was initiated. The location map confirms for you that the request is originating from your device, and not from someone attempting to compromise your account.

If you do not use the Microsoft Authenticator app and instead use MFA via SMS text, you will see no change. It is highly recommended that you begin using the Microsoft Authenticator app in place of SMS text to better protect your account. You can find instructions in our Knowledge Base.

With this change, Apple Watch users will no longer be able to authenticate with their watch. You should delete the authenticator app from your Apple Watch. At this time, there is no timeframe provided by Microsoft for when this feature will be available.

The Cybersecurity and Infrastructure Security Agency (CISA) has provided this fact sheet on number matching which may be of interest to you. If you have any questions or concerns, please contact the Technology Service Center at 610-660-2920.